GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,358
Composer 4,819
Erlang 36
GitHub Actions 32
Go 2,410
Maven 5,802
npm 4,046
NuGet 723
pip 3,842
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,510

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,364 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers... Moderate Unreviewed

CVE-2010-4099 was published May 17, 2022

The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix... High Unreviewed

CVE-2010-3491 was published May 17, 2022

In Settings, there is a possible way to make the user enable WiFi due to improper input... High Unreviewed

CVE-2021-39763 was published Mar 31, 2022

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to execute... Critical Unreviewed

CVE-2021-39065 was published Dec 14, 2021

IBM Security Verify Access could allow a user, using man in the middle techniques, to obtain... Moderate Unreviewed

CVE-2022-22311 was published Apr 1, 2022

Improper input validation vulnerability in pfSense CE and pfSense Plus (pfSense CE software... High Unreviewed

CVE-2022-24299 was published Apr 1, 2022

In Settings, there is a possible way to misrepresent which app wants to add a wifi network due to... High Unreviewed

CVE-2021-39771 was published Mar 31, 2022

In Audio Aurisys HAL, there is a possible permission bypass due to a missing permission check.... High Unreviewed

CVE-2021-0673 was published Dec 18, 2021

In Settings, there is a possible way to display an incorrect app name due to improper input... High Unreviewed

CVE-2021-39764 was published Mar 31, 2022

In Messaging, there is a possible way to bypass attachment restrictions due to improper input... Moderate Unreviewed

CVE-2021-39740 was published Mar 31, 2022

Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42320. Moderate Unreviewed

CVE-2021-43242 was published Dec 16, 2021

Improper Input Validation vulnerability in ABB 800xA, Control Software for AC 800M, Control... High Unreviewed

CVE-2021-22277 was published Apr 3, 2022

Improper input validation in all versions of GitLab CE/EE using sendmail to send emails allowed... High Unreviewed

CVE-2022-0741 was published Apr 3, 2022

Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O... High Unreviewed

CVE-2021-32970 was published Apr 3, 2022

A vulnerability in the Web-Based Reputation Score (WBRS) engine of Cisco AsyncOS Software for... Moderate Unreviewed

CVE-2022-20784 was published Apr 7, 2022

ASUS RT-AC86U has improper user request handling, which allows an unauthenticated LAN attacker to... Moderate Unreviewed

CVE-2022-25595 was published Apr 8, 2022

An local privilege escalation vulnerability due to a "runasroot" command in eScan Anti-Virus.... High Unreviewed

CVE-2021-26624 was published Apr 3, 2022

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2... Moderate Unreviewed

CVE-2020-29013 was published Apr 7, 2022

IBM WebSphere Application Server (WAS) 7.x before 7.0.0.13, and WebSphere Application Server... High Unreviewed

CVE-2010-3186 was published May 17, 2022

Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows... High Unreviewed

CVE-2022-27827 was published Apr 12, 2022

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 98.0.4758... Moderate Unreviewed

CVE-2022-0455 was published Apr 6, 2022

In ssmr, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed

CVE-2022-20070 was published Apr 12, 2022

Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows... High Unreviewed

CVE-2022-27828 was published Apr 12, 2022

In vow, there is a possible read of uninitialized data due to a improper input validation. This... Moderate Unreviewed

CVE-2022-20079 was published Apr 12, 2022

When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d) received from untrusted sources in... Moderate Unreviewed

CVE-2022-27655 was published Apr 13, 2022

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,364 advisories