Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,426 advisories

Loading
Vulnerability in the Oracle Applications DBA component of Oracle Database Server. Supported... Low Unreviewed
CVE-2020-2569 was published May 24, 2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles).... Low Unreviewed
CVE-2020-14860 was published May 24, 2022
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). Supported... Low Unreviewed
CVE-2020-2647 was published May 24, 2022
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The... Low Unreviewed
CVE-2020-2664 was published May 24, 2022
Vulnerability in the Oracle Hospitality Suites Management component of Oracle Food and Beverage... Low Unreviewed
CVE-2020-2697 was published May 24, 2022
IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging... Low Unreviewed
CVE-2021-29671 was published May 24, 2022
Bootloader contains a vulnerability in access permission settings where unauthorized software may... Low Unreviewed
CVE-2021-34396 was published May 24, 2022
IBM Cloud Pak System 2.3 could allow a local user in some situations to view the artifacts of... Low Unreviewed
CVE-2021-20478 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... Low Unreviewed
CVE-2021-21046 was published May 24, 2022
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O... Low Unreviewed
CVE-2021-25439 was published May 24, 2022
Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker... Low Unreviewed
CVE-2021-32002 was published May 24, 2022
Bootloader contains a vulnerability in the NV3P server where any user with physical access... Low Unreviewed
CVE-2021-1111 was published May 24, 2022
Rapid7 Insight Agent, versions prior to 3.1.3, suffer from an improper access control... Low Unreviewed
CVE-2021-4016 was published Jan 22, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in The Uniform Server 5.6.5 allow... Low Unreviewed
CVE-2010-2113 was published May 17, 2022
Unspecified vulnerability in the web interface in snom VoIP Phone firmware 8 before 8.2.35 allows... Low Unreviewed
CVE-2010-2291 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for... Low Unreviewed
CVE-2010-1998 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x before 6.x-4.9... Low Unreviewed
CVE-2010-2048 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x... Low Unreviewed
CVE-2010-1958 was published May 17, 2022
setup.py in Prewikka 0.9.14 installs prewikka.conf with world-readable permissions, which allows... Low Unreviewed
CVE-2010-2058 was published May 17, 2022
Pyftpd 0.8.4 creates log files with predictable names in a temporary directory, which allows... Low Unreviewed
CVE-2010-2072 was published May 17, 2022
Race condition in Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch allows... Low Unreviewed
CVE-2010-1775 was published May 17, 2022
IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.31 and 7.0.x before 7.0.0.11, when... Low Unreviewed
CVE-2010-1651 was published May 17, 2022
IBM WebSphere Application Server (WAS) 6.0.x before 6.0.2.41, 6.1.x before 6.1.0.31, and 7.0.x... Low Unreviewed
CVE-2010-1650 was published May 17, 2022
fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other... Low Unreviewed
CVE-2020-36314 was published May 24, 2022
Cross-site scripting (XSS) vulnerability in the Workflow module 5.x-2.x before 5.x-2.6 and 6.x-1... Low Unreviewed
CVE-2010-1539 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database