GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
224,712 advisories
Filter by severity
The Fontsy WordPress plugin through 1.8.6 does not properly sanitize and escape a parameter...
Critical
Unreviewed
CVE-2022-4447
was published
Jan 16, 2023
The Sidebar Widgets by CodeLights WordPress plugin through 1.4 does not validate and escape some...
Moderate
Unreviewed
CVE-2022-4460
was published
Jan 16, 2023
A vulnerability was found in 2071174A vinylmap. It has been classified as critical. Affected is...
Critical
Unreviewed
CVE-2015-10056
was published
Jan 16, 2023
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.836, remote attackers can bypass...
Critical
Unreviewed
CVE-2019-13360
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.836, a cwpsrv-xxx cookie allows a normal...
High
Unreviewed
CVE-2019-13359
was published
May 24, 2022
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.793 (Free/Open Source Version), 0.9.8.753 ...
Moderate
Unreviewed
CVE-2019-11429
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.838 to 0.9.8.846, remote attackers can...
High
Unreviewed
CVE-2019-13605
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14723
was published
May 24, 2022
A vulnerability, which was classified as critical, has been found in risheesh debutsav. This...
Critical
Unreviewed
CVE-2014-125081
was published
Jan 18, 2023
The 3D FlipBook WordPress plugin through 1.13.2 does not validate or escape some of its shortcode...
Moderate
Unreviewed
CVE-2022-4453
was published
Jan 16, 2023
Fuji Electric Tellus Lite V-Simulator versions 4.0.12.0 and prior are vulnerable to an out-of...
High
Unreviewed
CVE-2022-3087
was published
Jan 17, 2023
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Linux (Hitachi Tuning...
High
Unreviewed
CVE-2020-36611
was published
Jan 17, 2023
The WOOCS WordPress plugin before 1.3.9.4 does not validate and escape some of its shortcode...
Moderate
Unreviewed
CVE-2022-4431
was published
Jan 16, 2023
The Social Sharing WordPress plugin before 3.3.45 does not validate and escape some of its...
Moderate
Unreviewed
CVE-2022-4451
was published
Jan 16, 2023
CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having...
High
Unreviewed
CVE-2023-22366
was published
Jan 17, 2023
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14722
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14730
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14729
was published
May 24, 2022
A vulnerability, which was classified as problematic, was found in galaxy-data-resource up to 14...
Critical
Unreviewed
CVE-2015-10062
was published
Jan 17, 2023
A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as...
Critical
Unreviewed
CVE-2015-10064
was published
Jan 17, 2023
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846, Reflected XSS in filemanager2.php ...
Moderate
Unreviewed
CVE-2019-13387
was published
May 24, 2022
A vulnerability classified as critical has been found in PrivateSky apersistence. This affects an...
Critical
Unreviewed
CVE-2017-20171
was published
Jan 18, 2023
A vulnerability was found in nivit redports. It has been declared as critical. This vulnerability...
Critical
Unreviewed
CVE-2014-125082
was published
Jan 18, 2023
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14728
was published
May 24, 2022
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows...
Moderate
Unreviewed
CVE-2019-14721
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API