Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

583 advisories

Loading
An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. Nearly all of the... High Unreviewed
CVE-2020-35947 was published May 24, 2022
In deletePackageVersionedInternal of PackageManagerService.java, there is a possible way to exit... High Unreviewed
CVE-2020-0025 was published May 24, 2022
The Patient Portal of OpenEMR 5.0.2.1 is affected by a incorrect access control system in portal... High Unreviewed
CVE-2021-32101 was published May 24, 2022
In JetBrains YouTrack before 2020.6.6600, access control during the exporting of issues was... High Unreviewed
CVE-2021-31902 was published May 24, 2022
Windows Container Manager Service Elevation of Privilege Vulnerability This CVE ID is unique from... High Unreviewed
CVE-2021-31167 was published May 24, 2022
SmartAgent 3.1.0 allows a ViewOnly attacker to create a SuperUser account via the /#... High Unreviewed
CVE-2021-3165 was published May 24, 2022
An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service... High Unreviewed
CVE-2021-28645 was published May 24, 2022
Insecure inherited permissions for some Intel(R) NUC 9 Extreme Laptop Kit LAN Drivers before... High Unreviewed
CVE-2021-0055 was published May 24, 2022
Incorrect File Permissions in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to... High Unreviewed
CVE-2020-28909 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-31475 was published May 24, 2022
Exposure of Sensitive Information to an Unauthorized Actor High
CVE-2021-32717 was published for shopware/platform (Composer) Sep 8, 2021
Discourse through 2.8.7 allows admins to send invitations to arbitrary email addresses at an... High Unreviewed
CVE-2022-37458 was published Sep 3, 2022
Insecure inherited permissions in some Intel(R) ProSet/Wireless WiFi drivers may allow an... High Unreviewed
CVE-2021-0105 was published May 24, 2022
Insecure inherited permissions in the installer for the Intel(R) VTune(TM) Profiler before... High Unreviewed
CVE-2021-0077 was published May 24, 2022
On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client... High Unreviewed
CVE-2021-23022 was published May 24, 2022
ZOLL Defibrillator Dashboard, v prior to 2.2,The affected products contain insecure filesystem... High Unreviewed
CVE-2021-27483 was published May 24, 2022
Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions... High Unreviewed
CVE-2021-31540 was published May 24, 2022
BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the... High Unreviewed
CVE-2017-17677 was published May 24, 2022
Insecure inherited permissions in the Intel Unite(R) Client for Windows before version 4.2.25031... High Unreviewed
CVE-2021-0102 was published May 24, 2022
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an... High Unreviewed
CVE-2020-4945 was published May 24, 2022
The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R -... High Unreviewed
CVE-2021-23275 was published May 24, 2022
IBM Cloud Pak for Applications 4.3 could allow an authenticated user gain escalated privilesges... High Unreviewed
CVE-2021-20423 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... High Unreviewed
CVE-2021-31894 was published May 24, 2022
An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex... High Unreviewed
CVE-2021-32463 was published May 24, 2022
The Lexmark Universal Print Driver version 2.15.1.0 and below, G2 driver 2.7.1.0 and below, G3... High Unreviewed
CVE-2021-35449 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database