Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

295 advisories

Loading
A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V,... High Unreviewed
CVE-2022-25755 was published Apr 13, 2022
BeyondTrust AppGuard Enterprise through 6.6.20.2 creates a Temporary File in a Directory with... High Unreviewed
CVE-2021-42255 was published Apr 13, 2022
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local... High Unreviewed
CVE-2022-24411 was published Apr 13, 2022
A remote, unauthenticated attacker could utilize the control programmer of the CODESYS Control... High Unreviewed
CVE-2022-22515 was published Apr 8, 2022
Verizon LVSKIHP 5G outside devices through 2022-02-15 allow anyone (knowing the device's serial... High Unreviewed
CVE-2022-28376 was published Apr 4, 2022
IBM SterlingPartner Engagement Manager 6.2.0 could allow a remote authenticated attacker to... High Unreviewed
CVE-2022-22331 was published Apr 2, 2022
Use of insecure temporary file in Horovod High
CVE-2022-0315 was published for horovod (pip) Mar 29, 2022
JamieSlome ashahab
Exposure of Resource to Wrong Sphere in ThinkPHP Framework High
CVE-2022-25481 was published for topthink/framework (Composer) Mar 22, 2022
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control. High Unreviewed
CVE-2022-23345 was published Mar 22, 2022
Piwigo v12.2.0 was discovered to contain an information leak via the action parameter in /admin... High Unreviewed
CVE-2022-26267 was published Mar 20, 2022
An information disclosure issue was addressed with improved state management. This issue is fixed... High Unreviewed
CVE-2022-22579 was published Mar 19, 2022
Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up... High Unreviewed
CVE-2022-0815 was published Mar 12, 2022
There is an unauthorized access vulnerability in system components. Successful exploitation of... High Unreviewed
CVE-2021-40051 was published Mar 11, 2022
Skype Extension for Chrome Information Disclosure Vulnerability. High Unreviewed
CVE-2022-24522 was published Mar 10, 2022
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23... High Unreviewed
CVE-2022-24309 was published Mar 9, 2022
** DISPUTED ** The Visual Voice Mail (VVM) application through 2022-02-24 for Android allows... High Unreviewed
CVE-2022-23835 was published Feb 26, 2022
Insecure Temporary File in mlflow High
CVE-2022-0736 was published for mlflow (pip) Feb 24, 2022
CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/",... High Unreviewed
CVE-2022-23317 was published Feb 16, 2022
Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure... High Unreviewed
CVE-2021-42712 was published Feb 16, 2022
** UNSUPPORTED WHEN ASSIGNED ** Emerson Dixell XWEB-500 products are affected by information... High Unreviewed
CVE-2021-45421 was published Feb 15, 2022
Exposure of Resource to Wrong Sphere in Drupal Core High
CVE-2020-13670 was published for drupal/core (Composer) Feb 12, 2022
tdunlap607
A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of... High Unreviewed
CVE-2021-22785 was published Feb 12, 2022
The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted... High Unreviewed
CVE-2022-24975 was published Feb 12, 2022
Thinfinity VirtualUI 2.1.28.0, 2.1.32.1 and 2.5.26.2, fixed in version 3.0 is affected by an... High Unreviewed
CVE-2021-46354 was published Feb 10, 2022
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability. High Unreviewed
CVE-2022-21993 was published Feb 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database