GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,003
Composer 4,299
Erlang 31
GitHub Actions 21
Go 2,064
Maven 5,240
npm 3,744
NuGet 668
pip 3,424
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 239,836

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

242 advisories

Filter by severity

Sort by

Least recently updated

A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for... High Unreviewed

CVE-2021-24027 was published May 24, 2022

A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1... High Unreviewed

CVE-2021-22957 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2018-4048 was published May 24, 2022

BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory... High Unreviewed

CVE-2021-42254 was published May 24, 2022

Possible information exposure and denial of service due to NAS not dropping messages when... High Unreviewed

CVE-2021-30284 was published May 24, 2022

In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection... High Unreviewed

CVE-2021-43196 was published May 24, 2022

There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed

CVE-2021-22488 was published May 24, 2022

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script... High Unreviewed

CVE-2021-41790 was published May 24, 2022

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and... High Unreviewed

CVE-2021-29873 was published May 24, 2022

Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure... High Unreviewed

CVE-2021-22034 was published May 24, 2022

Accepting AMSDU frames with mismatched destination and source address can lead to information... High Unreviewed

CVE-2020-11303 was published May 24, 2022

An access issue was addressed with improved access restrictions. This issue is fixed in Security... High Unreviewed

CVE-2021-30850 was published May 24, 2022

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed

CVE-2021-20123 was published May 24, 2022

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed

CVE-2021-20124 was published May 24, 2022

Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app... High Unreviewed

CVE-2020-28145 was published May 24, 2022

waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form... High Unreviewed

CVE-2020-21503 was published May 24, 2022

An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting... High Unreviewed

CVE-2021-41847 was published May 24, 2022

The vCenter Server contains an information disclosure vulnerability due to an unauthenticated... High Unreviewed

CVE-2021-22012 was published May 24, 2022

The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service... High Unreviewed

CVE-2021-22008 was published May 24, 2022

LINE client for iOS before 11.15.0 might expose authentication information for a certain service... High Unreviewed

CVE-2021-41011 was published May 24, 2022

Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain... High Unreviewed

CVE-2020-19155 was published May 24, 2022

HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously... High Unreviewed

CVE-2021-40862 was published May 24, 2022

On BIG-IP version 16.x before 16.1.0 and 15.1.x before 15.1.3.1, when a DNS profile using a DNS... High Unreviewed

CVE-2021-23034 was published May 24, 2022

A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7,... High Unreviewed

CVE-2021-30798 was published May 24, 2022

An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5... High Unreviewed

CVE-2021-30656 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

242 advisories