GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
16 advisories
Filter by severity
If an object prototype was corrupted by an attacker, they would have been able to set undesired...
High
Unreviewed
CVE-2022-2200
was published
Dec 22, 2022
Due to the formatting logic of the "console.table()" function it was not safe to allow user...
High
Unreviewed
CVE-2022-21824
was published
Feb 25, 2022
admin/partials/wp-splashing-admin-main.php in the Splashing Images plugin (wp-splashing-images)...
High
Unreviewed
CVE-2018-6195
was published
May 13, 2022
An issue was discovered in CMS Made Simple 2.2.8. In the administrator page admin/changegroupperm...
High
Unreviewed
CVE-2019-9058
was published
May 13, 2022
The script '/adminui/error_details.php' in the Quest KACE System Management Appliance 8.0.318...
High
Unreviewed
CVE-2018-11135
was published
May 13, 2022
A vulnerability found in postgresql. On this security issue an attack requires permission to...
High
Unreviewed
CVE-2022-2625
was published
Aug 19, 2022
If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype...
High
Unreviewed
CVE-2022-1802
was published
Dec 22, 2022
An attacker could have sent a message to the parent process where the contents were used to...
High
Unreviewed
CVE-2022-1529
was published
Dec 22, 2022
A prototype pollution vulnerability exists in Rocket.Chat server <5.2.0 that could allow an...
High
Unreviewed
CVE-2023-23917
was published
Feb 23, 2023
A prototype pollution vulnerability has been reported to affect several QNAP operating system...
High
Unreviewed
CVE-2023-39296
was published
Jan 5, 2024
A Prototype Pollution issue in byondreal accessor <= 1.0.0 allows an attacker to execute...
High
Unreviewed
CVE-2024-36583
was published
Jun 17, 2024
jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function config....
High
Unreviewed
CVE-2024-38998
was published
Jul 1, 2024
che3vinci c3/utils-1 1.0.131 was discovered to contain a prototype pollution via the function...
High
Unreviewed
CVE-2024-39016
was published
Jul 1, 2024
amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function...
High
Unreviewed
CVE-2024-39003
was published
Jul 1, 2024
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could...
High
Unreviewed
CVE-2024-22443
was published
Jul 24, 2024
A vulnerability in the web-based management interface of HPE Aruba Networking EdgeConnect SD-WAN...
High
Unreviewed
CVE-2024-33519
was published
Jul 24, 2024
ProTip!
Advisories are also available from the
GraphQL API