Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

72 advisories

Loading
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a... High Unreviewed
CVE-2023-21097 was published Apr 19, 2023
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register... High Unreviewed
CVE-2023-22616 was published Apr 12, 2023
In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a... High Unreviewed
CVE-2023-20964 was published Mar 24, 2023
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation... High Unreviewed
CVE-2022-43513 was published Jan 10, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an... High Unreviewed
CVE-2022-34669 was published Dec 31, 2022
In Multiple Locations, there is a possibility to launch arbitrary protected activities due to a... High Unreviewed
CVE-2022-20550 was published Dec 20, 2022
Agent-to-controller security bypass vulnerabilities in Jenkins Compuware Topaz for Total Test Plugin High
CVE-2022-43428 was published for com.compuware.jenkins:compuware-topaz-for-total-test (Maven) Oct 19, 2022
NotMyFault
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the... High Unreviewed
CVE-2021-27406 was published Oct 14, 2022
The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion in versions up... High Unreviewed
CVE-2022-2431 was published Sep 7, 2022
The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file downloads and... High Unreviewed
CVE-2022-2633 was published Sep 7, 2022
In DreamServices, there is a possible way to launch arbitrary protected activities due to a... High Unreviewed
CVE-2022-20319 was published Aug 13, 2022
WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files is prone to multiple... High Unreviewed
CVE-2016-0796 was published Jul 29, 2022
In assertSafeToStartCustomActivity of AppRestrictionsFragment.java, there is a possible way to... High Unreviewed
CVE-2022-20223 was published Jul 14, 2022
ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name... High Unreviewed
CVE-2022-24241 was published Jun 3, 2022
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-30190 was published Jun 2, 2022
In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files... High Unreviewed
CVE-2021-0708 was published May 24, 2022
In sendDevicePickedIntent of DevicePickerFragment.java, there is a possible way to invoke a... High Unreviewed
CVE-2021-0593 was published May 24, 2022
In sendReplyIntentToReceiver of BluetoothPermissionActivity.java, there is a possible way to... High Unreviewed
CVE-2021-0591 was published May 24, 2022
Acronis True Image prior to 2021 Update 4 for Windows allowed local privilege escalation due to... High Unreviewed
CVE-2021-32576 was published May 24, 2022
Acronis True Image prior to 2021 Update 4 for Windows allowed local privilege escalation due to... High Unreviewed
CVE-2021-32578 was published May 24, 2022
A component of the HarmonyOS has a External Control of System or Configuration Setting... High Unreviewed
CVE-2021-22420 was published May 24, 2022
In dropFile of WiFiInstaller, there is a way to delete files accessible to CertInstaller due to a... High Unreviewed
CVE-2021-0536 was published May 24, 2022
In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE... High Unreviewed
CVE-2021-0550 was published May 24, 2022
In handleAppLaunch of AppLaunchActivity.java, there is a possible arbitrary activity launch due... High Unreviewed
CVE-2021-0608 was published May 24, 2022
Externally controlled reference to a resource in another sphere in quarantine functionality in... High Unreviewed
CVE-2021-27648 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database