Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

845 advisories

Loading
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21880. Moderate Unreviewed
CVE-2022-21915 was published Jan 12, 2022
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-21964 was published Jan 12, 2022
The affected product is vulnerable to an improper access control, which may allow an... Moderate Unreviewed
CVE-2021-23173 was published Jan 11, 2022
The distributed data service component has a vulnerability in data access control. Successful... High Unreviewed
CVE-2021-40005 was published Jan 11, 2022
In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection... Moderate Unreviewed
CVE-2021-42748 was published Jan 11, 2022
In Beaver Themer, attackers can bypass conditional logic controls (for hiding content) when... Moderate Unreviewed
CVE-2021-42749 was published Jan 11, 2022
Improper handling of resource allocation in virtual machines can lead to information exposure in... Moderate Unreviewed
CVE-2021-1918 was published Jan 4, 2022
Improper access control while doing XPU re-configuration dynamically can lead to unauthorized... High Unreviewed
CVE-2021-30276 was published Jan 4, 2022
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this... High Unreviewed
CVE-2021-37133 was published Jan 4, 2022
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this... High Unreviewed
CVE-2021-39969 was published Jan 4, 2022
MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability... High Unreviewed
CVE-2021-39972 was published Jan 4, 2022
Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor... Moderate Unreviewed
CVE-2021-39980 was published Jan 4, 2022
An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Evo 2.1.1905.1700. A low-integrity... High Unreviewed
CVE-2021-44852 was published Jan 2, 2022
Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file... High Unreviewed
CVE-2021-44717 was published Jan 2, 2022
Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of... High Unreviewed
CVE-2021-36723 was published Dec 30, 2021
An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files... High Unreviewed
CVE-2020-20948 was published Dec 28, 2021
Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This... Moderate Unreviewed
CVE-2021-45494 was published Dec 27, 2021
Inappropriate implementation in cache in Google Chrome prior to 96.0.4664.45 allowed a remote... Moderate Unreviewed
CVE-2021-38009 was published Dec 24, 2021
An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted... High Unreviewed
CVE-2021-20050 was published Dec 24, 2021
This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6,... Moderate Unreviewed
CVE-2019-8702 was published Dec 24, 2021
A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse... Moderate Unreviewed
CVE-2021-21878 was published Dec 23, 2021
Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of... Critical Unreviewed
CVE-2021-44525 was published Dec 21, 2021
Zoho ManageEngine Access Manager Plus before 4203 allows anyone to view a few data elements (e.g.... Critical Unreviewed
CVE-2021-44676 was published Dec 21, 2021
KNIME Server before 4.12.6 and 4.13.x before 4.13.4 (when installed in unattended mode) keeps the... Moderate Unreviewed
CVE-2021-45097 was published Dec 17, 2021
An issue was discovered in HTCondor before 8.8.15, 9.0.x before 9.0.4, and 9.1.x before 9.1.2.... High Unreviewed
CVE-2021-45101 was published Dec 17, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database