GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86 advisories
Filter by severity
ZZ Inc. KeyMouse Windows 3.08 and prior is affected by a remote code execution vulnerability...
High
Unreviewed
CVE-2022-24644
was published
Mar 11, 2022
Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated...
High
Unreviewed
CVE-2022-40799
was published
Nov 29, 2022
Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check...
High
Unreviewed
CVE-2022-28944
was published
May 24, 2022
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0)...
Moderate
Unreviewed
CVE-2020-8468
was published
May 24, 2022
An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check,...
High
Unreviewed
CVE-2021-27574
was published
May 24, 2022
Caphyon Ltd Advanced Installer 19.2 was discovered to contain a remote code execution (RCE)...
High
Unreviewed
CVE-2022-27438
was published
Jun 7, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur...
Moderate
Unreviewed
CVE-2021-30657
was published
May 24, 2022
IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop...
Moderate
Unreviewed
CVE-2022-24140
was published
Jul 7, 2022
Honeywell Experion PKS Safety Manager (SM and FSC) through 2022-05-06 has Insufficient...
Critical
Unreviewed
CVE-2022-30315
was published
Jul 29, 2022
An arbitrary file download vulnerability in the downloadAction() function of Penta Security...
Moderate
Unreviewed
CVE-2022-31324
was published
Sep 14, 2022
The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room...
High
Unreviewed
CVE-2022-22786
was published
May 19, 2022
In Tipask < 3.5.9, path parameters entered by the user are not validated when downloading...
Moderate
Unreviewed
CVE-2021-41714
was published
May 24, 2022
Rapid7 Nexpose versions prior to 6.6.172 failed to reliably validate the authenticity of update...
Moderate
Unreviewed
CVE-2022-4261
was published
Dec 8, 2022
The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its...
High
Unreviewed
CVE-2019-7229
was published
May 24, 2022
TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute...
Moderate
Unreviewed
CVE-2022-46430
was published
Dec 20, 2022
TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary...
Moderate
Unreviewed
CVE-2022-46428
was published
Dec 20, 2022
An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via...
High
Unreviewed
CVE-2021-45027
was published
Sep 2, 2022
Certain General Electric Renewable Energy products download firmware without an integrity check....
Critical
Unreviewed
CVE-2022-24117
was published
Dec 26, 2022
Barco wePresent WiPG-1600W devices download code without an Integrity Check. Affected Version(s):...
Critical
Unreviewed
CVE-2020-28332
was published
May 24, 2022
AppImage appimaged before 1.0.3 does not properly check whether a downloaded file is a valid...
Moderate
Unreviewed
CVE-2020-25266
was published
May 24, 2022
Tencent GameLoop before 4.1.21.90 downloaded updates over an insecure HTTP connection. A...
High
Unreviewed
CVE-2021-33879
was published
May 24, 2022
In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC...
High
Unreviewed
CVE-2021-38588
was published
May 24, 2022
This issue was addressed with improved handling of file metadata. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2021-30658
was published
May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur...
Moderate
Unreviewed
CVE-2021-30669
was published
May 24, 2022
Download of code without integrity check vulnerability in ActiveX control of Younglimwon Co., Ltd...
Critical
Unreviewed
CVE-2020-7873
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API