Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

24 advisories

Loading
Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability.... High Unreviewed
CVE-2021-36338 was published Jan 22, 2022
A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could cause data... High Unreviewed
CVE-2021-22806 was published Feb 12, 2022
FreeBSD NSD before 3.2.13 allows remote attackers to crash a NSD child server process (SIGSEGV)... High Unreviewed
CVE-2012-2979 was published Apr 23, 2022
Eclipse Vorto resolved Maven build artifacts for the Xtext project over HTTP instead of HTTPS High
CVE-2019-10248 was published for org.eclipse.vorto:org.eclipse.vorto.core (Maven) May 24, 2022
Incorrect Resource Transfer Between Spheres in Grails High
CVE-2019-12728 was published for org.grails:grails-core (Maven) May 24, 2022
In Eclipse Buildship versions prior to 3.1.1, the build files indicate that this project is... High Unreviewed
CVE-2019-11770 was published May 24, 2022
SmokeDetector intentionally does automatic deployments of updated copies of SmokeDetector without... High Unreviewed
CVE-2019-1020011 was published May 24, 2022
Newgen OmniFlow Intelligent Business Process Suite (iBPS) 7.0 has an "improper server side... High Unreviewed
CVE-2018-17791 was published May 24, 2022
D-link DIR-825AC G1 devices have Insufficient Compartmentalization between a host network and a... High Unreviewed
CVE-2019-13263 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly... High Unreviewed
CVE-2020-1048 was published May 24, 2022
An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. Whenever a... High Unreviewed
CVE-2020-15892 was published May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to impersonate another... High Unreviewed
CVE-2021-20411 was published May 24, 2022
Dell Unisphere for PowerMax versions prior to 9.2.1.6 contain an Authorization Bypass... High Unreviewed
CVE-2021-21531 was published May 24, 2022
A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4... High Unreviewed
CVE-2021-22900 was published May 24, 2022
The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low... High Unreviewed
CVE-2021-24602 was published May 24, 2022
A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could allow... High Unreviewed
CVE-2022-30236 was published Jun 3, 2022
Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An... High Unreviewed
CVE-2022-31233 was published Sep 1, 2022
Elrond-GO processing: fallback search of SCRs when not found in the main cache High
CVE-2022-46173 was published for github.com/ElrondNetwork/elrond-go (Go) Dec 30, 2022
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300.... High Unreviewed
CVE-2023-31115 was published Jun 7, 2023
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of... High Unreviewed
CVE-2023-44104 was published Oct 11, 2023
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of... High Unreviewed
CVE-2023-44100 was published Oct 11, 2023
yt-dlp File system modification and RCE through improper file-extension sanitization High
CVE-2024-38519 was published for yt-dlp (pip) Jul 2, 2024
pukkandan JarLob
Grub4K
youtube-dl vulnerable to file system modification and RCE through improper file-extension sanitization High
GHSA-22fp-mf44-f2mq was published for youtube-dl (pip) Apr 18, 2025
pukkandan JarLob
Grub4K dirkf rhdesmond
An unauthenticated remote attacker could use a demo account of the portal to hijack devices that... High Unreviewed
CVE-2025-41645 was published May 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database