GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,147

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,781 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2020-4654 was published May 24, 2022

An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence... High Unreviewed

CVE-2021-31602 was published May 24, 2022

An issue was discovered in GNU Hurd before 0.9 20210404-9. When trying to exec a setuid... High Unreviewed

CVE-2021-43411 was published May 24, 2022

In conditionallyRemoveIdentifiers of SubscriptionController.java, there is a possible way to... Moderate Unreviewed

CVE-2021-0644 was published May 24, 2022

ACINQ Eclair before 0.6.3 allows loss of funds because of dust HTLC exposure. Critical Unreviewed

CVE-2021-41591 was published May 24, 2022

Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that... Moderate Unreviewed

CVE-2021-35551 was published May 24, 2022

Improper access control in the firmware for the Intel(R) Ethernet Network Controller E810 before... Moderate Unreviewed

CVE-2021-0198 was published May 24, 2022

Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows... High Unreviewed

CVE-2022-33174 was published Jun 14, 2022

ManageEngine Log360 Builds < 5235 are affected by an improper access control vulnerability... Critical Unreviewed

CVE-2021-20136 was published May 24, 2022

The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default... High Unreviewed

CVE-2020-10145 was published May 24, 2022

The Easy Cookies Policy WordPress plugin through 1.6.2 is lacking any capability and CSRF check... Moderate Unreviewed

CVE-2021-24405 was published May 24, 2022

Broken access control for user creation in Pydio Cells 2.2.9 allows remote anonymous users to... Moderate Unreviewed

CVE-2021-41325 was published May 24, 2022

Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure. High Unreviewed

CVE-2021-41593 was published May 24, 2022

Couchbase Server 6.5.x and 6.6.x through 6.6.2 has Incorrect Access Control. Externally managed... Critical Unreviewed

CVE-2021-35943 was published May 24, 2022

The Safari app extension bundled with 1Password for Mac 7.7.0 through 7.8.x before 7.8.7 is... Moderate Unreviewed

CVE-2021-41795 was published May 24, 2022

An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1... High Unreviewed

CVE-2021-25470 was published May 24, 2022

Projectsend version r1295 is affected by sensitive information disclosure. Because of not... High Unreviewed

CVE-2021-40884 was published May 24, 2022

Improper access control vulnerability in FactoryCameraFB prior to version 3.4.74 allows untrusted... High Unreviewed

CVE-2021-25440 was published May 24, 2022

Improper access control vulnerability in Rakuten Casa version AP_F_V1_4_1 or AP_F_V2_0_0 allows a... High Unreviewed

CVE-2022-28704 was published Jun 14, 2022

In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of... Moderate Unreviewed

CVE-2021-0682 was published May 24, 2022

Dell PowerScale OneFS contains an Unsynchronized Access to Shared Data in a Multithreaded Context... Moderate Unreviewed

CVE-2021-36305 was published May 24, 2022

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:... Moderate Unreviewed

CVE-2021-35552 was published May 24, 2022

Zoho Remote Access Plus Server Windows Desktop binary fixed in version 10.1.2132 is affected by... High Unreviewed

CVE-2021-42955 was published May 24, 2022

Zoho Remote Access Plus Server Windows Desktop Binary fixed from 10.1.2121.1 is affected by... High Unreviewed

CVE-2021-42954 was published May 24, 2022

Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft ... Moderate Unreviewed

CVE-2021-35553 was published May 24, 2022

Previous 1…13…112 Next

Previous 1 2 … 11 12 13 14 15 … 111 112 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,781 advisories