GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

991 advisories

Filter by severity

Sort by

Least recently updated

Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed

CVE-2021-20756 was published May 24, 2022

An issue was discovered in Zammad before 4.1.1. An admin can discover the application secret via... Moderate Unreviewed

CVE-2021-42087 was published May 24, 2022

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script... High Unreviewed

CVE-2021-41790 was published May 24, 2022

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and... High Unreviewed

CVE-2021-29873 was published May 24, 2022

An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting... High Unreviewed

CVE-2021-41847 was published May 24, 2022

In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and 1.36.x before 1.36.1, bots... High Unreviewed

CVE-2021-35197 was published May 24, 2022

HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously... High Unreviewed

CVE-2021-40862 was published May 24, 2022

Improper control of program execution vulnerability in RevoWorks Browser 2.1.230 and earlier... Critical Unreviewed

CVE-2021-20790 was published May 24, 2022

The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service... High Unreviewed

CVE-2021-22008 was published May 24, 2022

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4,... Moderate Unreviewed

CVE-2021-30709 was published May 24, 2022

ownCloud owncloud/core before 10.10.0 Improperly Removes Sensitive Information Before Storage or... High Unreviewed

CVE-2022-31649 was published Jun 10, 2022

Exposure of Sensitive Information vulnerability in Samsung Account prior to version 13.2.00.6... High Unreviewed

CVE-2022-30732 was published Jun 8, 2022

Dell PowerStore versions 2.0.0.x, 2.0.1.x and 2.1.0.x contains an open port vulnerability. A... Critical Unreviewed

CVE-2022-26869 was published Jun 3, 2022

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with... Low Unreviewed

CVE-2021-30815 was published May 24, 2022

There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed

CVE-2021-22488 was published May 24, 2022

Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure... High Unreviewed

CVE-2021-22034 was published May 24, 2022

Clustered Data ONTAP versions 9.x prior to 9.5P18, 9.6P16, 9.7P16, 9.8P7 and 9.9.1P2 are... Moderate Unreviewed

CVE-2021-27001 was published May 24, 2022

Information disclosure from SendEntry in GitLab starting with 10.8 allowed exposure of full URL... Moderate Unreviewed

CVE-2021-39900 was published May 24, 2022

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent... Moderate Unreviewed

CVE-2021-39866 was published May 24, 2022

A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version... Moderate Unreviewed

CVE-2021-37734 was published May 24, 2022

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 14... Moderate Unreviewed

CVE-2021-1807 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2018-4048 was published May 24, 2022

LINE client for iOS before 11.15.0 might expose authentication information for a certain service... High Unreviewed

CVE-2021-41011 was published May 24, 2022

Exposure of Resource to Wrong Sphere in Spring Data REST Moderate

CVE-2021-22047 was published for org.springframework.data:spring-data-rest-core (Maven) May 24, 2022

This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.3,... Moderate Unreviewed

CVE-2021-1824 was published May 24, 2022

Previous 1 2 … 33 34 35 36 37 38 39 40 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

991 advisories