GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,373 advisories
Filter by severity
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei...
High
Unreviewed
CVE-2021-37010
was published
Nov 24, 2021
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A...
High
Unreviewed
CVE-2021-21980
was published
Nov 25, 2021
An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials...
High
Unreviewed
CVE-2021-43963
was published
Dec 8, 2021
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei...
High
Unreviewed
CVE-2021-37067
was published
Dec 8, 2021
An information disclosure vulnerability in the login page of Huntflow Enterprise before 3.10.4...
High
Unreviewed
CVE-2021-37935
was published
Dec 11, 2021
The Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.38 does not have any authorisation...
High
Unreviewed
CVE-2021-24945
was published
Dec 14, 2021
A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2021-20049
was published
Dec 24, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information.
High
Unreviewed
CVE-2021-45654
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352...
High
Unreviewed
CVE-2021-45653
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK50...
High
Unreviewed
CVE-2021-45651
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352...
High
Unreviewed
CVE-2021-45652
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R7000...
High
Unreviewed
CVE-2021-45650
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects...
High
Unreviewed
CVE-2021-45648
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80...
High
Unreviewed
CVE-2021-45647
was published
Dec 27, 2021
NETGEAR R7000 devices before 1.0.11.116 are affected by disclosure of sensitive information.
High
Unreviewed
CVE-2021-45646
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2021-45493
was published
Dec 27, 2021
In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based adblocking and a proxying...
High
Unreviewed
CVE-2021-45884
was published
Dec 28, 2021
Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of...
High
Unreviewed
CVE-2021-36723
was published
Dec 30, 2021
Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability ...
High
Unreviewed
CVE-2021-37125
was published
Jan 4, 2022
hoppscotch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
High
Unreviewed
CVE-2022-0121
was published
Jan 7, 2022
The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not validate the qvquery...
High
Unreviewed
CVE-2021-24948
was published
Jan 11, 2022
An information disclosure vulnerability exists due to a web server misconfiguration in the...
High
Unreviewed
CVE-2022-21236
was published
Jan 29, 2022
Information Exposure vulnerability in Hitachi Energy LinkOne application, due to a...
High
Unreviewed
CVE-2021-40340
was published
Jan 29, 2022
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that...
High
Unreviewed
CVE-2021-22825
was published
Jan 29, 2022
XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries....
High
Unreviewed
CVE-2022-23320
was published
Feb 8, 2022
ProTip!
Advisories are also available from the
GraphQL API