GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,416

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

983 advisories

Filter by severity

Sort by

Least recently updated

WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user.... High Unreviewed

CVE-2021-36917 was published Nov 25, 2021

Azure Active Directory Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-42306 was published Nov 25, 2021

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message... Moderate Unreviewed

CVE-2021-44225 was published Nov 27, 2021

Incorrect Access Control in Web Applications operating on Business-DNA Solutions GmbHâ€™s... Moderate Unreviewed

CVE-2021-42116 was published Dec 1, 2021

Unauthenticated remote attackers can read textual content via FreeMarker including files /scripts... High Unreviewed

CVE-2021-23263 was published Dec 3, 2021

IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to reas of the application... Moderate Unreviewed

CVE-2021-29716 was published Dec 4, 2021

IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter... Moderate Unreviewed

CVE-2021-29867 was published Dec 4, 2021

IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client side vulnerabilties due to a... Moderate Unreviewed

CVE-2021-29719 was published Dec 4, 2021

** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a path manipulation... Critical Unreviewed

CVE-2021-43674 was published Dec 4, 2021

Successful exploitation of this vulnerability could allow an unauthorized user to access... High Unreviewed

CVE-2021-36198 was published Dec 7, 2021

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could... Moderate Unreviewed

CVE-2021-43043 was published Dec 7, 2021

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The Samba file... Moderate Unreviewed

CVE-2021-43039 was published Dec 7, 2021

A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before... High Unreviewed

CVE-2021-40288 was published Dec 8, 2021

An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise... Moderate Unreviewed

CVE-2021-29115 was published Dec 8, 2021

Under certain circumstances, asynchronous functions could have caused a navigation to fail but... Moderate Unreviewed

CVE-2021-43536 was published Dec 9, 2021

Microsoft introduced a new feature in Windows 10 known as Cloud Clipboard which, if enabled, will... Moderate Unreviewed

CVE-2021-38505 was published Dec 9, 2021

An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows... Low Unreviewed

CVE-2021-25515 was published Dec 9, 2021

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1, and 11.5 is vulnerable to... Moderate Unreviewed

CVE-2021-38931 was published Dec 10, 2021

IBM Db2 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an Information Disclosure when using... High Unreviewed

CVE-2021-20373 was published Dec 10, 2021

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from... Moderate Unreviewed

CVE-2021-39915 was published Dec 14, 2021

An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary... High Unreviewed

CVE-2021-41065 was published Dec 15, 2021

A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed

CVE-2021-44523 was published Dec 15, 2021

A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed

CVE-2021-44524 was published Dec 15, 2021

A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... High Unreviewed

CVE-2021-44522 was published Dec 15, 2021

In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory... Moderate Unreviewed

CVE-2021-39648 was published Dec 16, 2021

Previous 1 2 3 4 5 … 39 40 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

983 advisories