GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,891
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,501
Maven 5,943
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,756

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45503 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24... Critical Unreviewed

CVE-2021-45504 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45505 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24... Critical Unreviewed

CVE-2021-45507 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45506 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24... Critical Unreviewed

CVE-2021-45509 was published Dec 27, 2021

NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass. High Unreviewed

CVE-2021-45510 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24... Critical Unreviewed

CVE-2021-45508 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects AC2100 before 2021-08... Critical Unreviewed

CVE-2021-45511 was published Dec 27, 2021

Zoho ManageEngine ServiceDesk Plus before 12003 allows authentication bypass in certain admin... Critical Unreviewed

CVE-2021-44526 was published Dec 24, 2021

An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett... High Unreviewed

CVE-2021-21902 was published Dec 23, 2021

An authentication bypass vulnerability exists in the CMD_DEVICE_GET_RSA_KEY_REQUEST functionality... Critical Unreviewed

CVE-2021-21952 was published Dec 23, 2021

An authentication bypass vulnerability exists in the process_msg() function of the home_security... High Unreviewed

CVE-2021-21953 was published Dec 23, 2021

Dell PowerScale OneFS, versions 8.2.2-9.3.0.x, contain an authentication bypass by primary... High Unreviewed

CVE-2021-36350 was published Dec 22, 2021

Mesa Labs AmegaView Versions 3.0 and prior’s passcode is generated by an easily reversible... Critical Unreviewed

CVE-2021-27451 was published Dec 22, 2021

Zoho ManageEngine ServiceDesk Plus MSP before 10.5 Build 10534 is vulnerable to unauthenticated... Critical Unreviewed

CVE-2021-44675 was published Dec 21, 2021

VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 contain an authentication bypass... Critical Unreviewed

CVE-2021-22057 was published Dec 21, 2021

TCMAN GIM is vulnerable to a lack of authorization in all available webservice methods listed in ... High Unreviewed

CVE-2021-40851 was published Dec 18, 2021

Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation,... High Unreviewed

CVE-2021-40826 was published Dec 16, 2021

In stopVpnProfile of Vpn.java, there is a possible VPN profile reset due to a permissions bypass.... High Unreviewed

CVE-2021-0649 was published Dec 16, 2021

The impacted products, when configured to use SSO, are affected by an improper authentication... Critical Unreviewed

CVE-2021-43935 was published Dec 16, 2021

A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed

CVE-2021-44524 was published Dec 15, 2021

Sysaid API User Enumeration - Attacker sending requests to specific api path without any... Moderate Unreviewed

CVE-2021-36721 was published Dec 15, 2021

glFusion CMS 1.7.9 is affected by an access control vulnerability via /public_html/users.php. Critical Unreviewed

CVE-2021-44949 was published Dec 15, 2021

The RegistrationMagic WordPress plugin made it possible for unauthenticated users to log in as... Critical Unreviewed

CVE-2021-4073 was published Dec 15, 2021

Previous 1…136137 Next

Previous 1 2 … 133 134 135 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,423 advisories