GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,965

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

567 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

a. IPSec UDP key material can be retrieved from machine-to-machine interfaces and human... Moderate Unreviewed

CVE-2020-12142 was published May 24, 2022

A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur... Moderate Unreviewed

CVE-2021-30803 was published May 24, 2022

Exposure of Resource to Wrong Sphere in Liferay Portal Moderate

CVE-2021-33330 was published for com.liferay.portal:release.portal.bom (Maven) May 24, 2022

The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure... Moderate Unreviewed

CVE-2021-36791 was published May 24, 2022

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 specifies permissions for a security... Moderate Unreviewed

CVE-2019-4306 was published May 24, 2022

OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified... Moderate Unreviewed

CVE-2021-38378 was published May 24, 2022

OX App Suite through 7.10.5 has Incorrect Access Control for retrieval of session information via... Moderate Unreviewed

CVE-2021-38376 was published May 24, 2022

Moodle Insecure direct object reference (IDOR) in a calendar web service Moderate

CVE-2021-43560 was published for moodle/moodle (Composer) May 24, 2022

Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE... Moderate Unreviewed

CVE-2021-42301 was published May 24, 2022

The attacker can access the sensitive information stored within the jovi Smart Scene module by... Moderate Unreviewed

CVE-2020-12488 was published May 24, 2022

Insecure direct object reference (IDOR) vulnerability in ICREM H8 SSRMS allows attackers to... Moderate Unreviewed

CVE-2021-3380 was published May 24, 2022

IBM QRadar Network Security 5.4.0 and 5.5.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2020-4160 was published May 24, 2022

In all versions of GitLab CE/EE since version 10.6, a project export leaks the external webhook... Moderate Unreviewed

CVE-2021-39898 was published May 24, 2022

Several web interfaces in D-Link DIR-868LW 1.12b have no authentication requirements for access,... Moderate Unreviewed

CVE-2021-33259 was published May 24, 2022

A component of the HarmonyOS has a External Control of System or Configuration Setting... Moderate Unreviewed

CVE-2021-22454 was published May 24, 2022

Exposure of Resource to Wrong Sphere in Spring Data REST Moderate

CVE-2021-22047 was published for org.springframework.data:spring-data-rest-core (Maven) May 24, 2022

In Gradle Enterprise through 2021.3, probing of the server-side network environment can occur via... Moderate Unreviewed

CVE-2021-41590 was published May 24, 2022

A vulnerability in Cisco Firepower Threat Defense (FTD) Software could allow an authenticated,... Moderate Unreviewed

CVE-2021-34761 was published May 24, 2022

The affected product is vulnerable to a disclosure of peer username and password by allowing all... Moderate Unreviewed

CVE-2021-42536 was published May 24, 2022

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to... Moderate Unreviewed

CVE-2021-39127 was published May 24, 2022

Improper validation of kernel buffer address while copying information back to user buffer can... Moderate Unreviewed

CVE-2021-1969 was published May 24, 2022

Improper validation of kernel buffer address while copying information back to user buffer can... Moderate Unreviewed

CVE-2021-1968 was published May 24, 2022

This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005... Moderate Unreviewed

CVE-2021-30828 was published May 24, 2022

Clustered Data ONTAP versions 9.x prior to 9.5P18, 9.6P16, 9.7P16, 9.8P7 and 9.9.1P2 are... Moderate Unreviewed

CVE-2021-27001 was published May 24, 2022

InBody App for iOS versions prior to 2.3.30 and InBody App for Android versions prior to 2.2.90... Moderate Unreviewed

CVE-2021-20832 was published May 24, 2022

Previous 1…11…23 Next

Previous 1 2 … 9 10 11 12 13 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

567 advisories