Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,001 advisories

Loading
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005... Moderate Unreviewed
CVE-2021-30828 was published May 24, 2022
In Gradle Enterprise through 2021.3, probing of the server-side network environment can occur via... Moderate Unreviewed
CVE-2021-41590 was published May 24, 2022
In all versions of GitLab EE since version 8.13, an endpoint discloses names of private groups... Moderate Unreviewed
CVE-2021-39884 was published May 24, 2022
Inappropriate implementation in Blink in Google Chrome prior to 93.0.4577.82 allowed a remote... Moderate Unreviewed
CVE-2021-30630 was published May 24, 2022
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54... Moderate Unreviewed
CVE-2021-37967 was published May 24, 2022
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54... Moderate Unreviewed
CVE-2021-37965 was published May 24, 2022
Datalust Seq before 2021.2.6259 allows users (with view filters applied to their accounts) to see... Moderate Unreviewed
CVE-2021-41329 was published May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7,... High Unreviewed
CVE-2021-30798 was published May 24, 2022
Operational restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20763 was published May 24, 2022
An issue was discovered in PrimeKey EJBCA before 7.6.0. As part of the configuration of the... Low Unreviewed
CVE-2021-40086 was published May 24, 2022
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure... Moderate Unreviewed
CVE-2021-36791 was published May 24, 2022
IBM QRadar Network Security 5.4.0 and 5.5.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2020-4160 was published May 24, 2022
OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified... Moderate Unreviewed
CVE-2021-38378 was published May 24, 2022
InBody App for iOS versions prior to 2.3.30 and InBody App for Android versions prior to 2.2.90... Moderate Unreviewed
CVE-2021-20832 was published May 24, 2022
Potential speculative code store bypass in all supported CPU products, in conjunction with... Moderate Unreviewed
CVE-2021-26313 was published May 24, 2022
Information exposure vulnerability in SemIWCMonitor prior to SMR Jun-2022 Release 1 allows local... Low Unreviewed
CVE-2022-30714 was published Jun 8, 2022
Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6... Moderate Unreviewed
CVE-2022-30734 was published Jun 8, 2022
All versions of Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by... High Unreviewed
CVE-2021-22146 was published May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS... Low Unreviewed
CVE-2021-30816 was published May 24, 2022
An access issue was addressed with improved access restrictions. This issue is fixed in Security... High Unreviewed
CVE-2021-30850 was published May 24, 2022
In all versions of GitLab CE/EE since version 10.6, a project export leaks the external webhook... Moderate Unreviewed
CVE-2021-39898 was published May 24, 2022
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54... Moderate Unreviewed
CVE-2021-37968 was published May 24, 2022
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE... Low Unreviewed
CVE-2021-42323 was published May 24, 2022
The vCenter Server contains a local information disclosure vulnerability in the Analytics service... Moderate Unreviewed
CVE-2021-22007 was published May 24, 2022
The vCenter Server contains an information disclosure vulnerability due to an unauthenticated... High Unreviewed
CVE-2021-22012 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database