GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
18,809 advisories
Filter by severity
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function...
Critical
Unreviewed
CVE-2022-24995
was published
Mar 11, 2022
sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized...
Critical
Unreviewed
CVE-2022-24651
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection through /admin/login.php. An attacker can log in to the...
Critical
Unreviewed
CVE-2022-24600
was published
Mar 11, 2022
Signiant - Manager+Agents XML External Entity (XXE) - Extract internal files of the affected...
Critical
Unreviewed
CVE-2022-22795
was published
Mar 11, 2022
A Buffer Overflow vulnerabiltiy exists in TP-LINK WR-886N 20190826 2.3.8 in thee /cloud_config...
Critical
Unreviewed
CVE-2021-44628
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php.
Critical
Unreviewed
CVE-2022-24605
was published
Mar 11, 2022
sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized...
Critical
Unreviewed
CVE-2022-24652
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44632
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_mod.php.
Critical
Unreviewed
CVE-2022-24602
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_ok.php.
Critical
Unreviewed
CVE-2022-24607
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php.
Critical
Unreviewed
CVE-2022-24603
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_mod.php.
Critical
Unreviewed
CVE-2022-24604
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php.
Critical
Unreviewed
CVE-2022-24606
was published
Mar 11, 2022
Luocms v2.0 is affected by an incorrect access control vulnerability. Through /admin/templates...
Critical
Unreviewed
CVE-2022-24609
was published
Mar 11, 2022
YzmCMS v6.3 is affected by broken access control. Without login, unauthorized access to the user...
Critical
Unreviewed
CVE-2022-23383
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44622
was published
Mar 11, 2022
A Buffer Overflow vulnerabilitiy exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44629
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 via the /cloud_config...
Critical
Unreviewed
CVE-2021-44623
was published
Mar 11, 2022
The System Diagnosis service of MyASUS before 3.1.2.0 allows privilege escalation.
Critical
Unreviewed
CVE-2022-22814
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44627
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in /cloud_config...
Critical
Unreviewed
CVE-2021-44625
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA) PluginServlet...
Critical
Unreviewed
CVE-2021-42854
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44626
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)...
Critical
Unreviewed
CVE-2021-42853
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44631
was published
Mar 11, 2022
ProTip!
Advisories are also available from the
GraphQL API