Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Loading
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4,... Moderate Unreviewed
CVE-2021-30709 was published May 24, 2022
Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission... Moderate Unreviewed
CVE-2021-28568 was published May 24, 2022
Inappropriate implementation in Navigation in Google Chrome prior to 93.0.4577.63 allowed a... Moderate Unreviewed
CVE-2021-30615 was published May 24, 2022
This release addresses a potential information leakage vulnerability in NetIQ Access Manager... Moderate Unreviewed
CVE-2021-22525 was published May 24, 2022
Adobe Captivate version 11.5.5 (and earlier) is affected by an Creation of Temporary File In... Moderate Unreviewed
CVE-2021-36002 was published May 24, 2022
ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability using ImportAlert... Moderate Unreviewed
CVE-2021-35219 was published May 24, 2022
IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to obtain sensitive... Critical Unreviewed
CVE-2021-29715 was published May 24, 2022
An issue was discovered in PrimeKey EJBCA before 7.6.0. As part of the configuration of the... Low Unreviewed
CVE-2021-40086 was published May 24, 2022
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to... Moderate Unreviewed
CVE-2020-18972 was published May 24, 2022
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an... Moderate Unreviewed
CVE-2021-28633 was published May 24, 2022
An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS).... High Unreviewed
CVE-2020-36476 was published May 24, 2022
A confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7... Moderate Unreviewed
CVE-2021-22252 was published May 24, 2022
In TP-Link Wireless N Router WR840N an ARP poisoning attack can cause buffer overflow Moderate Unreviewed
CVE-2021-29280 was published May 24, 2022
Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20756 was published May 24, 2022
Viewing restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20755 was published May 24, 2022
Operational restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20763 was published May 24, 2022
OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendor's... High Unreviewed
CVE-2021-38712 was published May 24, 2022
NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations. Moderate Unreviewed
CVE-2021-37326 was published May 24, 2022
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be... Moderate Unreviewed
CVE-2021-29880 was published May 24, 2022
An information disclosure vulnerability exists within Dut Computer Control Engineering Co.'s PLC... High Unreviewed
CVE-2020-18754 was published May 24, 2022
In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC... High Unreviewed
CVE-2021-38587 was published May 24, 2022
A component of the Huawei smartphone has a External Control of System or Configuration Setting... High Unreviewed
CVE-2021-22385 was published May 24, 2022
An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path... Moderate Unreviewed
CVE-2020-21356 was published May 24, 2022
A component of the HarmonyOS has a External Control of System or Configuration Setting... High Unreviewed
CVE-2021-22420 was published May 24, 2022
There is an Information Disclosure Vulnerability in Huawei Smartphone.Successful exploitation of... High Unreviewed
CVE-2021-22446 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database