Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

362 advisories

Loading
Missing authentication and improper input validation in KERUI Wifi Endoscope Camera (YPC99) allow... Critical Unreviewed
CVE-2018-13114 was published May 13, 2022
The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and... Critical Unreviewed
CVE-2018-19248 was published May 13, 2022
Remote code execution in Apache TomEE Critical
CVE-2020-13931 was published for org.apache.tomee:apache-tomee (Maven) Feb 9, 2022
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco... Critical Unreviewed
CVE-2018-0127 was published May 13, 2022
Password recovery vulnerability in SICK SICK SIM4000 (PPC) Partnumber 1078787 allows an... Critical Unreviewed
CVE-2022-27582 was published Nov 2, 2022
Password recovery vulnerability in SICK SIM2000ST Partnumber 2086502 and 1080579 allows an... Critical Unreviewed
CVE-2022-27584 was published Nov 2, 2022
Password recovery vulnerability in SICK SIM1000 FX Partnumber 1097816 and 1097817 with firmware... Critical Unreviewed
CVE-2022-27585 was published Nov 2, 2022
Password recovery vulnerability in SICK SIM1004 Partnumber 1098148 with firmware version < 2.0.0... Critical Unreviewed
CVE-2022-27586 was published Nov 2, 2022
An issue was discovered in BACKCLICK Professional 5.9.63. Due to exposed CORBA management... Critical Unreviewed
CVE-2022-43999 was published Nov 17, 2022
An issue was discovered in BACKCLICK Professional 5.9.63. Due to an exposed internal... Critical Unreviewed
CVE-2022-44000 was published Nov 17, 2022
Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to bypass... Critical Unreviewed
CVE-2015-2888 was published May 13, 2022
Multiple Version of TRUMPF TruTops products expose a service function without necessary... Critical Unreviewed
CVE-2022-1300 was published May 3, 2022
Registers used to store Modbus values can be read and written from the web interface without... Critical Unreviewed
CVE-2019-6533 was published May 13, 2022
VMware Workspace ONE Assist prior to 22.10 contains an Authentication Bypass vulnerability. A... Critical Unreviewed
CVE-2022-31685 was published Nov 10, 2022
Missing authentication for critical function vulnerability in UNIMO Technology digital video... Critical Unreviewed
CVE-2022-35733 was published Aug 24, 2022
The database backup function in Delta Electronics InfraSuite Device Master Versions 00.00.01a and... Critical Unreviewed
CVE-2022-40202 was published Nov 1, 2022
The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable... Critical Unreviewed
CVE-2022-1368 was published Sep 7, 2022
A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open... Critical Unreviewed
CVE-2022-26082 was published May 26, 2022
An improper authentication vulnerability exists in the REST API functionality of Open Automation... Critical Unreviewed
CVE-2022-26833 was published May 26, 2022
The affected product’s configuration is vulnerable due to missing authentication, which may allow... Critical Unreviewed
CVE-2021-32930 was published May 24, 2022
A vulnerability has been found in SourceCodester Sanitization Management System 1.0 and... Critical Unreviewed
CVE-2022-3674 was published Oct 26, 2022
Missing authentication for critical function vulnerability in iSCSI management functionality in... Critical Unreviewed
CVE-2022-27623 was published Oct 25, 2022
The server permits communication without any authentication procedure, allowing the attacker to... Critical Unreviewed
CVE-2021-38457 was published May 24, 2022
The manage users profile services of the network camera device allows an authenticated. Remote... Critical Unreviewed
CVE-2021-30167 was published May 24, 2022
BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to ... Critical Unreviewed
CVE-2021-28913 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database