Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,019
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,005 advisories

Loading
Improper access control in the installer for some Intel(R) Wireless Bluetooth(R) and Killer(TM)... High Unreviewed
CVE-2021-0151 was published May 24, 2022
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when... High Unreviewed
CVE-2021-21013 was published May 24, 2022
An issue was discovered in Concrete CMS through 8.5.5. There is an SVG sanitizer bypass. High Unreviewed
CVE-2021-40104 was published May 24, 2022
Improper Access Control in Gurock TestRail versions < 7.2.0.3014 resulted in sensitive... High Unreviewed
CVE-2021-40875 was published May 24, 2022
A security flaw in the 'owned' function of a smart contract implementation for BTC2X (B2X), a... High Unreviewed
CVE-2021-34273 was published May 24, 2022
Insufficient policy enforcement in Installer in Google Chrome prior to 92.0.4515.107 allowed a... High Unreviewed
CVE-2021-30577 was published May 24, 2022
Improper access control in trusted application environment can cause unauthorized access to CDSP... High Unreviewed
CVE-2021-1932 was published May 24, 2022
The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is... High Unreviewed
CVE-2021-41801 was published May 24, 2022
Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to code execution. High Unreviewed
CVE-2022-30586 was published Jun 7, 2022
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab... High Unreviewed
CVE-2022-1944 was published Jun 7, 2022
In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal... High Unreviewed
CVE-2021-20990 was published May 24, 2022
Intent redirection vulnerability in Samsung Health prior to version 6.16 allows attacker to... High Unreviewed
CVE-2021-25401 was published May 24, 2022
An incorrect access control vulnerability exists in Sourcecodester Engineers Online Portal in PHP... High Unreviewed
CVE-2021-42671 was published May 24, 2022
Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain... High Unreviewed
CVE-2020-19150 was published May 24, 2022
An issue was discovered in GNU Hurd before 0.9 20210404-9. When trying to exec a setuid... High Unreviewed
CVE-2021-43411 was published May 24, 2022
An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence... High Unreviewed
CVE-2021-31602 was published May 24, 2022
Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows... High Unreviewed
CVE-2022-33174 was published Jun 14, 2022
The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default... High Unreviewed
CVE-2020-10145 was published May 24, 2022
Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure. High Unreviewed
CVE-2021-41593 was published May 24, 2022
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1... High Unreviewed
CVE-2021-25470 was published May 24, 2022
Improper access control vulnerability in FactoryCameraFB prior to version 3.4.74 allows untrusted... High Unreviewed
CVE-2021-25440 was published May 24, 2022
Projectsend version r1295 is affected by sensitive information disclosure. Because of not... High Unreviewed
CVE-2021-40884 was published May 24, 2022
Improper access control vulnerability in Rakuten Casa version AP_F_V1_4_1 or AP_F_V2_0_0 allows a... High Unreviewed
CVE-2022-28704 was published Jun 14, 2022
Zoho Remote Access Plus Server Windows Desktop binary fixed in version 10.1.2132 is affected by... High Unreviewed
CVE-2021-42955 was published May 24, 2022
Zoho Remote Access Plus Server Windows Desktop Binary fixed from 10.1.2121.1 is affected by... High Unreviewed
CVE-2021-42954 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database