GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,486

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,526 advisories

Filter by severity

Sort by

Least recently updated

The Futurio Extra WordPress plugin before 1.6.3 allowed any logged in user, even a subscriber,... Moderate Unreviewed

CVE-2021-25110 was published Feb 15, 2022

Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet... Moderate Unreviewed

CVE-2021-0166 was published Feb 11, 2022

Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet... Moderate Unreviewed

CVE-2021-0170 was published Feb 11, 2022

A high privileged user who has access to transaction SM59 can read connection details stored with... Moderate Unreviewed

CVE-2022-22545 was published Feb 11, 2022

S/4HANA Supplier Factsheet exposes the private address and bank details of an Employee Business... Moderate Unreviewed

CVE-2022-22542 was published Feb 11, 2022

The Keybase Clients for macOS and Windows before version 5.9.0 fails to properly remove exploded... Moderate Unreviewed

CVE-2022-22779 was published Feb 11, 2022

An information exposure vulnerability exists in the Palo Alto Networks GlobalProtect app on... Moderate Unreviewed

CVE-2022-0018 was published Feb 11, 2022

A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow... Moderate Unreviewed

CVE-2022-20680 was published Feb 11, 2022

AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted... Moderate Unreviewed

CVE-2020-12966 was published Feb 10, 2022

A CWE-200: Information Exposure vulnerability exists which could cause the troubleshooting... Moderate Unreviewed

CVE-2021-22815 was published Jan 29, 2022

Authenticated (admin+) Arbitrary File Download vulnerability discovered in Download Monitor... Moderate Unreviewed

CVE-2021-31567 was published Jan 29, 2022

An information disclosure vulnerability exists due to the hardcoded TLS key of reolink RLC-410W... Moderate Unreviewed

CVE-2022-21199 was published Jan 29, 2022

BuddyBoss Platform through 1.8.0 allows remote attackers to obtain the email address of each user... Moderate Unreviewed

CVE-2021-44692 was published Jan 27, 2022

IBM Security Guardium Insights 3.0 could allow a remote attacker to obtain sensitive information,... Moderate Unreviewed

CVE-2021-29838 was published Jan 27, 2022

IBM Security Guardium Insights 3.0 could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2021-29846 was published Jan 27, 2022

Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 has the option for... Moderate Unreviewed

CVE-2021-23195 was published Jan 22, 2022

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere... Moderate Unreviewed

CVE-2022-22733 was published Jan 21, 2022

Mattermost Boards plugin v0.10.0 and earlier fails to protect email addresses of all users via... Moderate Unreviewed

CVE-2021-37867 was published Jan 19, 2022

An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3... Moderate Unreviewed

CVE-2022-0093 was published Jan 19, 2022

Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), 20.004.30017 (and earlier)... Moderate Unreviewed

CVE-2021-44702 was published Jan 15, 2022

Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), 20.004.30017 (and earlier)... Moderate Unreviewed

CVE-2021-44739 was published Jan 15, 2022

A file information exposure vulnerability exists in the Palo Alto Networks Cortex XDR agent that... Moderate Unreviewed

CVE-2022-0013 was published Jan 13, 2022

IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive version information... Moderate Unreviewed

CVE-2021-38956 was published Jan 11, 2022

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed

CVE-2021-46148 was published Jan 11, 2022

Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive... Moderate Unreviewed

CVE-2021-46166 was published Jan 11, 2022

Previous 1 2 … 218 219 220 221 222 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,526 advisories