GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,687

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,558 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IRIX fam service allows an attacker to obtain a list of all files on the server. High Unreviewed

CVE-1999-0059 was published Apr 30, 2022

A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key... High Unreviewed

CVE-2018-10911 was published Apr 30, 2022

Elcomplus SmartPTT SCADA Server web application does not, or cannot, sufficiently verify whether... High Unreviewed

CVE-2021-43937 was published Apr 30, 2022

A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel.... High Unreviewed

CVE-2022-1353 was published Apr 30, 2022

Cisco IOS 12.0 through 12.2, when IP routing is disabled, accepts false ICMP redirect messages,... High Unreviewed

CVE-2003-1398 was published Apr 29, 2022

DotBr 0.1 stores config.inc with insufficient access control under the web document root, which... High Unreviewed

CVE-2003-1404 was published Apr 29, 2022

In Bender/ebee Charge Controllers in multiple versions are prone to an RFID leak. The RFID of the... High Unreviewed

CVE-2021-34589 was published Apr 28, 2022

IBM QRadar SIEM 7.3, 7.4, and 7.5 in some senarios may reveal authorized service tokens to other... High Unreviewed

CVE-2021-38919 was published Apr 28, 2022

An information disclosure flaw was found in the way the Java Virtual Machine (JVM) implementation... High Unreviewed

CVE-2012-4420 was published Apr 23, 2022

gnome-system-log polkit policy allows arbitrary files on the system to be read High Unreviewed

CVE-2012-5535 was published Apr 23, 2022

mediawiki allows deleted text to be exposed High Unreviewed

CVE-2012-0046 was published Apr 23, 2022

Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this... High Unreviewed

CVE-2010-1432 was published Apr 21, 2022

Sensitive Information Disclosure (sac-export.csv) in Simple Ajax Chat (WordPress plugin) <= 20220115 High Unreviewed

CVE-2022-27849 was published Apr 16, 2022

An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which... High Unreviewed

CVE-2021-43287 was published Apr 15, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions), Mendix... High Unreviewed

CVE-2022-27241 was published Apr 13, 2022

Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management... High Unreviewed

CVE-2022-27667 was published Apr 13, 2022

FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download... High Unreviewed

CVE-2022-26591 was published Apr 7, 2022

The Booking Package WordPress plugin before 1.5.29 requires a token for exporting the ical... High Unreviewed

CVE-2022-0709 was published Apr 5, 2022

It was observed that while login into Business-central console, HTTP request discloses sensitive... High Unreviewed

CVE-2019-14839 was published Apr 3, 2022

A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as... High Unreviewed

CVE-2022-1077 was published Mar 30, 2022

The Reporting module in Aseco Lietuva document management system DVS Avilys before 2022-03-10... High Unreviewed

CVE-2022-27192 was published Mar 25, 2022

Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to... High Unreviewed

CVE-2022-25571 was published Mar 25, 2022

GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP... High Unreviewed

CVE-2021-27422 was published Mar 24, 2022

Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access... High Unreviewed

CVE-2022-22547 was published Mar 11, 2022

Sensitive information disclosure discovered in wpDiscuz WordPress plugin (versions <= 7.3.11). High Unreviewed

CVE-2022-23984 was published Feb 22, 2022

Previous 1…61…63 Next

Previous 1 2 … 59 60 61 62 63 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,558 advisories