Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,616
Maven
5,000+
npm
4,255
NuGet
760
pip
4,040
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+

45 advisories

Loading
Access of Resource Using Incompatible Type ('Type Confusion') in yourls/yourls Critical
CVE-2019-14537 was published for yourls/yourls (Composer) Sep 23, 2019
Access of Resource Using Incompatible Type in Hermes Critical
CVE-2021-24044 was published for hermes-engine (npm) Jan 16, 2022
Type Confusion in ImpressCMS Critical
CVE-2021-26600 was published for impresscms/impresscms (Composer) Mar 29, 2022
Access of Resource Using Incompatible Type in Facebook Hermes Critical
CVE-2020-1911 was published for hermes-engine (npm) May 24, 2022
The type inference system allows the compilation of functions that can cause type confusions... Critical Unreviewed
CVE-2019-9791 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7970 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7975 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7971 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7973 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7972 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7974 was published May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion... Critical Unreviewed
CVE-2019-7969 was published May 24, 2022
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X... Critical Unreviewed
CVE-2016-6992 was published May 13, 2022
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion... Critical Unreviewed
CVE-2018-4920 was published May 14, 2022
An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz... Critical Unreviewed
CVE-2021-23908 was published May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS... Critical Unreviewed
CVE-2021-1829 was published May 24, 2022
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of... Critical Unreviewed
CVE-2019-10231 was published May 13, 2022
A type confusion vulnerability could be triggered when resolving the "typeof" unary operator in... Critical Unreviewed
CVE-2021-24045 was published Dec 14, 2021
njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a... Critical Unreviewed
CVE-2021-46463 was published Feb 15, 2022
Firebase PHP-JWT key/algorithm type confusion Critical
CVE-2021-46743 was published for firebase/php-jwt (Composer) Mar 30, 2022
llupa
Credited to llupa
Unsafe fall-through in getWhereConditions Critical
CVE-2023-22579 was published for @sequelize/core (npm) Feb 23, 2023
Out of bounds access in rgb Critical
CVE-2020-25016 was published for rgb (Rust) Aug 25, 2021
Rust Failure Crate Vulnerable to Type confusion Critical
CVE-2019-25010 was published for failure (Rust) Aug 25, 2021
Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate... Critical Unreviewed
CVE-2021-33970 was published Apr 20, 2023
An error in Hermes' algorithm for copying objects properties prior to commit... Critical Unreviewed
CVE-2023-23557 was published May 19, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database