Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

735 advisories

Loading
Path traversal in elFinder.NetCore High
CVE-2021-23428 was published for elFinder.NetCore (NuGet) Sep 2, 2021
Imporoper path validation in elFinder.NetCore Critical
CVE-2021-23427 was published for elFinder.NetCore (NuGet) Sep 2, 2021
ASP.NET Core Information Disclosure Vulnerability Moderate
CVE-2021-34532 was published for Microsoft.AspNetCore.Authentication.JwtBearer (NuGet) Aug 25, 2021
Timing based private key exposure in Bouncy Castle Moderate
CVE-2020-15522 was published for BouncyCastle (Maven) Aug 13, 2021
klaudialax
Directory Traversal in elFinder.AspNet High
CVE-2021-23415 was published for elFinder.AspNet (NuGet) Aug 9, 2021
Regular Expression Denial of Service in System.Text.RegularExpressions High
CVE-2019-0820 was published for System.Text.RegularExpressions (NuGet) Aug 4, 2021
r-bit-rry
Unrestricted Upload of File with Dangerous Type in Umbraco CMS Moderate
CVE-2020-9472 was published for UmbracoCms (NuGet) Aug 2, 2021
Insufficient Session Expiration and TOCTOU Race Condition in OPC FOundation UA .Net Standard Moderate
CVE-2020-8867 was published for OPCFoundation.NetStandard.Opc.Ua (NuGet) Aug 2, 2021
Path Traversal in elFinder.Net.Core High
CVE-2021-23407 was published for elFinder.Net.Core (NuGet) Aug 2, 2021
Remote code execution in ChakraCore High
CVE-2020-1180 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Remote code execution in ChakraCore High
CVE-2020-1172 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Remote code execution in ChakraCore High
CVE-2020-1057 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Missing Authorization in FastReport Critical
CVE-2020-27998 was published for FastReport.OpenSource (NuGet) Aug 2, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0768 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Out-of-bounds Write in ChakraCore High
CVE-2020-17048 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Out-of-bounds Write in ChakraCore High
CVE-2020-17054 was published for Microsoft.ChakraCore (NuGet) Aug 2, 2021
Out-of-bounds Write in ChakraCore High
CVE-2020-0828 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds Write in ChakraCore High
CVE-2020-0831 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0826 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0833 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0830 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0829 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0832 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0848 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
Out-of-bounds write in ChakraCore High
CVE-2020-0823 was published for Microsoft.ChakraCore (NuGet) Jul 28, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database