GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,099
Composer 4,077
Erlang 29
GitHub Actions 19
Go 1,903
Maven 5,100
npm 3,632
NuGet 638
pip 3,249
Pub 10
RubyGems 864
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,475

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

133 advisories

Filter by severity

Sort by

Least recently updated

The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door... Moderate Unreviewed

CVE-2022-27254 was published Mar 25, 2022

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric MELSEC iQ-F series... High Unreviewed

CVE-2022-25159 was published Apr 3, 2022

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric... High Unreviewed

CVE-2022-25155 was published Apr 3, 2022

Dr Trust USA iCheck Connect BP Monitor BP Testing 118 1.2.1 is vulnerable to a Replay Attack to... High Unreviewed

CVE-2020-27374 was published Apr 8, 2022

Improper Authorization vulnerability in Netop Vision Pro up to and including to 9.7.1 allows an... Moderate Unreviewed

CVE-2021-27195 was published May 24, 2022

The replay feature in the client in Wargaming World of Warships 0.11.4 allows remote attackers to... High Unreviewed

CVE-2022-31265 was published May 27, 2022

joyebike Joy ebike Wolf Manufacturing year 2022 is vulnerable to Authentication Bypass by Capture... Moderate Unreviewed

CVE-2022-30466 was published Jun 8, 2022

Xiaomi Lamp 1 v2.0.4_0066 was discovered to be vulnerable to replay attacks. This allows... High Unreviewed

CVE-2022-31277 was published Jun 17, 2022

Use of hard-coded credentials vulnerability exists in Machine automation controller NJ series all... High Unreviewed

CVE-2022-34151 was published Jul 5, 2022

Joy ebike Wolf Manufacturing year 2022 is vulnerable to Denial of service, which allows remote... Moderate Unreviewed

CVE-2022-30467 was published Jun 30, 2022

Authentication bypass by capture-replay vulnerability exists in Machine automation controller NJ... High Unreviewed

CVE-2022-33208 was published Jul 5, 2022

Authentication bypass by capture-replay vulnerability exists in Machine automation controller NX7... High Unreviewed

CVE-2022-33971 was published Jul 5, 2022

relay_cgi.cgi on Dingtian DT-R002 2CH relay devices with firmware 3.1.276A allows an attacker to... Moderate Unreviewed

CVE-2022-29593 was published Jul 15, 2022

LTI 1.3 Tool Library's Nonce Claim Value not validated against nonce value sent in Authentication Request before v5.0 High

CVE-2022-31158 was published for packbackbooks/lti-1-3-php-library (Composer) Jul 15, 2022

The Sinilink XY-WFT1 WiFi Remote Thermostat, running firmware 1.3.6, allows an attacker to bypass... Moderate Unreviewed

CVE-2022-43704 was published Jan 20, 2023

Because the WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 and earlier... High Unreviewed

CVE-2022-40621 was published Sep 14, 2022

Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to account takeover. High Unreviewed

CVE-2021-38827 was published Nov 14, 2022

A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... High Unreviewed

CVE-2022-29878 was published May 21, 2022

An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. Because of the lack... Moderate Unreviewed

CVE-2019-18199 was published May 24, 2022

An OpenPGP digital signature includes information about the date when the signature was created.... Moderate Unreviewed

CVE-2022-2226 was published Dec 22, 2022

The Remote Keyless Entry (RKE) receiving unit on certain Nissan, Kia, and Hyundai vehicles... Moderate Unreviewed

CVE-2022-37418 was published Aug 25, 2022

The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open... Low Unreviewed

CVE-2019-20626 was published May 24, 2022

The Remote Keyless Entry (RKE) receiving unit on certain Mazda vehicles through 2020 allows... Moderate Unreviewed

CVE-2022-36945 was published Aug 25, 2022

The Remote Keyless Entry (RKE) receiving unit on certain Honda vehicles through 2018 allows... Moderate Unreviewed

CVE-2022-37305 was published Aug 25, 2022

SAP NetWeaver ABAP Server and ABAP Platform - versions SAP_BASIS 700, 701, 702, 710, 711, 730,... Critical Unreviewed

CVE-2023-0014 was published Jan 10, 2023

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133 advisories