Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,796
Erlang
29
GitHub Actions
16
Go
1,713
Maven
4,948
npm
3,477
NuGet
605
pip
3,006
Pub
10
RubyGems
829
Rust
774
Swift
34
Unreviewed advisories
All unreviewed
5,000+

44 advisories

Improper neutralization in Intel(R) Power Gadget software for macOS all versions may allow an... High Unreviewed
CVE-2023-46689 was published May 16, 2024
Improper neutralization in Intel(R) Power Gadget software for Windows all versions may allow an... High Unreviewed
CVE-2023-42773 was published May 16, 2024
collective.contact.widget is vulnerable to cross-site scripting Moderate
CVE-2022-4638 was published for collective.contact.widget (pip) Dec 22, 2022
A vulnerability was found in siwapp-ror. It has been rated as problematic. This issue affects... Moderate Unreviewed
CVE-2021-4265 was published Dec 21, 2022
A vulnerability was found in ctrlo lenio. It has been declared as problematic. This vulnerability... Moderate Unreviewed
CVE-2021-4257 was published Dec 19, 2022
A vulnerability, which was classified as problematic, was found in Shoplazza LifeStyle 1.1.... Moderate Unreviewed
CVE-2022-4597 was published Dec 18, 2022
A vulnerability, which was classified as problematic, has been found in vexim2. This issue... Moderate Unreviewed
CVE-2022-4523 was published Dec 15, 2022
A vulnerability, which was classified as critical, has been found in m0ver bible-online. Affected... Critical Unreviewed
CVE-2022-4454 was published Dec 13, 2022
A vulnerability was found in pallidlight online-course-selection-system. It has been classified... Moderate Unreviewed
CVE-2022-4401 was published Dec 11, 2022
pyRdfa3 Cross-site Scripting vulnerability Moderate
CVE-2022-4396 was published for pyRdfa3 (pip) Dec 10, 2022
A vulnerability classified as critical has been found in Teledyne FLIR AX8 up to 1.46.16.... Critical Unreviewed
CVE-2022-4364 was published Dec 8, 2022
A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected... Critical Unreviewed
CVE-2022-4353 was published Dec 8, 2022
A vulnerability classified as problematic has been found in SourceCodester Human Resource... Moderate Unreviewed
CVE-2022-4279 was published Dec 3, 2022
A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been rated... High Unreviewed
CVE-2022-4278 was published Dec 3, 2022
A vulnerability was found in Shaoxing Background Management System. It has been declared as... Critical Unreviewed
CVE-2022-4277 was published Dec 3, 2022
A vulnerability was found in C-DATA Web Management System. It has been rated as critical. This... Critical Unreviewed
CVE-2022-4257 was published Dec 1, 2022
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as... Moderate Unreviewed
CVE-2022-4233 was published Nov 30, 2022
A vulnerability, which was classified as critical, was found in Sports Club Management System 119... Critical Unreviewed
CVE-2022-4015 was published Nov 16, 2022
A vulnerability has been found in emlog and classified as problematic. Affected by this... Moderate Unreviewed
CVE-2022-3968 was published Nov 13, 2022
A vulnerability, which was classified as problematic, was found in sanluan PublicCMS. Affected is... Moderate Unreviewed
CVE-2022-3950 was published Nov 11, 2022
A vulnerability has been found in Activity Log Plugin and classified as critical. This... Critical Unreviewed
CVE-2022-3941 was published Nov 11, 2022
IBAX go-ibax vulnerable to SQL injection High
CVE-2022-3801 was published for github.com/IBAX-io/go-ibax (Go) Nov 1, 2022
A vulnerability, which was classified as critical, has been found in seccome Ehoney. This issue... Critical Unreviewed
CVE-2022-3729 was published Oct 28, 2022
Cross-site Scripting in actionpack Low
CVE-2022-3704 was published for actionpack (RubyGems) Oct 27, 2022 withdrawn
rafaelfranca
A vulnerability classified as critical has been found in SourceCodester Online Medicine Ordering... Critical Unreviewed
CVE-2022-3714 was published Oct 27, 2022
ProTip! Advisories are also available from the GraphQL API