GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,481

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

263,625 advisories

Filter by severity

Sort by

Least recently updated

The function that is used to parse the Authentication header in Brocade Fabric OS Web application... Moderate Unreviewed

CVE-2021-27791 was published May 24, 2022

IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to HTTP header injection, caused by... Moderate Unreviewed

CVE-2020-4706 was published May 24, 2022

Incorrect Access Control in DotCMS versions before 5.1 allows remote attackers to gain privileges... High Unreviewed

CVE-2020-18875 was published May 24, 2022

Certain NETGEAR devices are affected by privilege escalation. This affects D8500 before 1.0.3.44,... High Unreviewed

CVE-2021-38539 was published May 24, 2022

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited,... High Unreviewed

CVE-2021-22928 was published May 24, 2022

system-tools-backends before 2.6.0-1ubuntu1.1 in Ubuntu 8.10, as used by "Users and Groups" in... Moderate Unreviewed

CVE-2008-6792 was published May 17, 2022

Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller... Critical Unreviewed

CVE-2020-21651 was published May 24, 2022

VITEC Exterity IPTV products through 2021-04-30 allow privilege escalation to root. Critical Unreviewed

CVE-2021-42109 was published May 24, 2022

Uncontrolled resource consumption in MELSEC iQ-R series C Controller Module R12CCPU-V all... Moderate Unreviewed

CVE-2021-20600 was published May 24, 2022

The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is... High Unreviewed

CVE-2021-41801 was published May 24, 2022

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an... High Unreviewed

CVE-2017-8672 was published May 17, 2022

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager... Critical Unreviewed

CVE-2021-40997 was published May 24, 2022

Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows... Moderate Unreviewed

CVE-2021-38179 was published May 24, 2022

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and... High Unreviewed

CVE-2021-29873 was published May 24, 2022

In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service... High Unreviewed

CVE-2021-0705 was published May 24, 2022

Improper access control in trusted application environment can cause unauthorized access to CDSP... High Unreviewed

CVE-2021-1932 was published May 24, 2022

An issue was discovered in Zammad before 4.1.1. An admin can discover the application secret via... Moderate Unreviewed

CVE-2021-42087 was published May 24, 2022

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script... High Unreviewed

CVE-2021-41790 was published May 24, 2022

Unspecified vulnerability in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x... High Unreviewed

CVE-2008-6574 was published May 17, 2022

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. The issue... Moderate Unreviewed

CVE-2017-6982 was published May 17, 2022

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on... High Unreviewed

CVE-2017-8538 was published May 17, 2022

An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue... High Unreviewed

CVE-2017-6978 was published May 17, 2022

VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in... Moderate Unreviewed

CVE-2017-4916 was published May 17, 2022

Vertex4 SunAge 1.08.1 and earlier allows remote attackers to cause a denial of service (infinite... Moderate Unreviewed

CVE-2008-6671 was published May 17, 2022

An issue was discovered in KMCIS CaseAware. Reflected cross site scripting is present in the user... Moderate Unreviewed

CVE-2017-5631 was published May 17, 2022

Previous 1 2 … 392 393 394 395 396 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

263,625 advisories