GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,306

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,910 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere... Moderate Unreviewed

CVE-2022-22733 was published Jan 21, 2022

Mattermost Boards plugin v0.10.0 and earlier fails to protect email addresses of all users via... Moderate Unreviewed

CVE-2021-37867 was published Jan 19, 2022

An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3... Moderate Unreviewed

CVE-2022-0093 was published Jan 19, 2022

Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), 20.004.30017 (and earlier)... Moderate Unreviewed

CVE-2021-44702 was published Jan 15, 2022

Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), 20.004.30017 (and earlier)... Moderate Unreviewed

CVE-2021-44739 was published Jan 15, 2022

A file information exposure vulnerability exists in the Palo Alto Networks Cortex XDR agent that... Moderate Unreviewed

CVE-2022-0013 was published Jan 13, 2022

IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive version information... Moderate Unreviewed

CVE-2021-38956 was published Jan 11, 2022

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed

CVE-2021-46148 was published Jan 11, 2022

Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive... Moderate Unreviewed

CVE-2021-46166 was published Jan 11, 2022

Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read... Moderate Unreviewed

CVE-2022-22287 was published Jan 11, 2022

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows... Moderate Unreviewed

CVE-2022-22701 was published Jan 11, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated... Moderate Unreviewed

CVE-2021-43949 was published Jan 11, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated... Moderate Unreviewed

CVE-2021-43951 was published Jan 11, 2022

A exposure of sensitive information to an unauthorized actor in Fortinet FortiMail versions 6.0.9... Moderate Unreviewed

CVE-2020-15933 was published Jan 6, 2022

Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub... Moderate Unreviewed

CVE-2021-20869 was published Jan 5, 2022

Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub... Moderate Unreviewed

CVE-2021-20871 was published Jan 5, 2022

ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain... Moderate Unreviewed

CVE-2021-20148 was published Jan 4, 2022

Certain NETGEAR devices are affected by disclosure of sensitive information. A UPnP request... Moderate Unreviewed

CVE-2021-45603 was published Dec 27, 2021

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R6400v2... Moderate Unreviewed

CVE-2021-45649 was published Dec 27, 2021

IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user... Moderate Unreviewed

CVE-2021-39013 was published Dec 23, 2021

Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability... Moderate Unreviewed

CVE-2021-36341 was published Dec 22, 2021

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed

CVE-2021-45038 was published Dec 18, 2021

In geniezone driver, there is a possible out of bounds read due to an incorrect bounds check.... Moderate Unreviewed

CVE-2021-0676 was published Dec 18, 2021

pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak. Moderate Unreviewed

CVE-2021-45095 was published Dec 17, 2021

In onCreate of RequestIgnoreBatteryOptimizations.java, there is a possible way to determine... Moderate Unreviewed

CVE-2021-1023 was published Dec 16, 2021

Previous 1 2 … 233 234 235 236 237 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,910 advisories