Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,528 advisories

Loading
A file information exposure vulnerability exists in the Palo Alto Networks Cortex XDR agent that... Moderate Unreviewed
CVE-2022-0013 was published Jan 13, 2022
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive version information... Moderate Unreviewed
CVE-2021-38956 was published Jan 11, 2022
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed
CVE-2021-46148 was published Jan 11, 2022
Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive... Moderate Unreviewed
CVE-2021-46166 was published Jan 11, 2022
Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read... Moderate Unreviewed
CVE-2022-22287 was published Jan 11, 2022
PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows... Moderate Unreviewed
CVE-2022-22701 was published Jan 11, 2022
The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not validate the qvquery... High Unreviewed
CVE-2021-24948 was published Jan 11, 2022
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated... Moderate Unreviewed
CVE-2021-43949 was published Jan 11, 2022
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated... Moderate Unreviewed
CVE-2021-43951 was published Jan 11, 2022
hoppscotch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2022-0121 was published Jan 7, 2022
A exposure of sensitive information to an unauthorized actor in Fortinet FortiMail versions 6.0.9... Moderate Unreviewed
CVE-2020-15933 was published Jan 6, 2022
Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub... Moderate Unreviewed
CVE-2021-20869 was published Jan 5, 2022
Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub... Moderate Unreviewed
CVE-2021-20871 was published Jan 5, 2022
ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain... Moderate Unreviewed
CVE-2021-20148 was published Jan 4, 2022
Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability ... High Unreviewed
CVE-2021-37125 was published Jan 4, 2022
Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of... High Unreviewed
CVE-2021-36723 was published Dec 30, 2021
In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based adblocking and a proxying... High Unreviewed
CVE-2021-45884 was published Dec 28, 2021
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... High Unreviewed
CVE-2021-45493 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. A UPnP request... Moderate Unreviewed
CVE-2021-45603 was published Dec 27, 2021
NETGEAR R7000 devices before 1.0.11.116 are affected by disclosure of sensitive information. High Unreviewed
CVE-2021-45646 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80... High Unreviewed
CVE-2021-45647 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R6400v2... Moderate Unreviewed
CVE-2021-45649 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects... High Unreviewed
CVE-2021-45648 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R7000... High Unreviewed
CVE-2021-45650 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK50... High Unreviewed
CVE-2021-45651 was published Dec 27, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database