Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5,014 advisories

Loading
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software... High Unreviewed
CVE-2021-1252 was published May 24, 2022
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4... High Unreviewed
CVE-2021-34415 was published May 24, 2022
In onCreate of ConfirmConnectActivity, there is a possible remote bypass of user consent due to... High Unreviewed
CVE-2021-0594 was published May 24, 2022
Unrestricted file upload vulnerability in form_upload.php in PHPG Upload 1.0 allows remote... High Unreviewed
CVE-2008-6207 was published May 17, 2022
Winny 2.0b7.1 and earlier does not properly process BBS information, which has unspecified impact... High Unreviewed
CVE-2010-2361 was published May 17, 2022
There is an Unauthorized file access vulnerability in Huawei Smartphone due to unstandardized... High Unreviewed
CVE-2021-36991 was published May 24, 2022
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when... High Unreviewed
CVE-2021-32995 was published May 24, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS... High Unreviewed
CVE-2021-1840 was published May 24, 2022
In sqlite3_str_vappendf of sqlite3.c, there is a possible out of bounds write due to improper... High Unreviewed
CVE-2021-0646 was published May 24, 2022
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed
CVE-2021-1514 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote... High Unreviewed
CVE-2021-1137 was published May 24, 2022
A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.0... High Unreviewed
CVE-2021-1404 was published May 24, 2022
An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of validation of the Java... High Unreviewed
CVE-2021-34539 was published May 24, 2022
Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows... High Unreviewed
CVE-2021-20081 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker... High Unreviewed
CVE-2021-1279 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1318 was published May 24, 2022
The Sidebar gadget in ITN News Gadget (aka ITN Hub Gadget) 1.06 for Windows Vista, and possibly... High Unreviewed
CVE-2008-7037 was published May 17, 2022
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer... High Unreviewed
CVE-2021-1108 was published May 24, 2022
Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input... High Unreviewed
CVE-2010-1591 was published May 17, 2022
Winny 2.0b7.1 and earlier does not properly process node information, which has unspecified... High Unreviewed
CVE-2010-2362 was published May 17, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1315 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1314 was published May 24, 2022
Improper Input Validation in RESTEasy High
CVE-2020-1695 was published for org.jboss.resteasy:resteasy-client (Maven) May 24, 2022
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2022-24418 was published May 27, 2022
An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an... High Unreviewed
CVE-2020-35683 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database