GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
985 advisories
Filter by severity
WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user....
High
Unreviewed
CVE-2021-36917
was published
Nov 25, 2021
Azure Active Directory Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2021-42306
was published
Nov 25, 2021
In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message...
Moderate
Unreviewed
CVE-2021-44225
was published
Nov 27, 2021
Incorrect Access Control in Web Applications operating on Business-DNA Solutions GmbH’s...
Moderate
Unreviewed
CVE-2021-42116
was published
Dec 1, 2021
Unauthenticated remote attackers can read textual content via FreeMarker including files /scripts...
High
Unreviewed
CVE-2021-23263
was published
Dec 3, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to reas of the application...
Moderate
Unreviewed
CVE-2021-29716
was published
Dec 4, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter...
Moderate
Unreviewed
CVE-2021-29867
was published
Dec 4, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client side vulnerabilties due to a...
Moderate
Unreviewed
CVE-2021-29719
was published
Dec 4, 2021
** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a path manipulation...
Critical
Unreviewed
CVE-2021-43674
was published
Dec 4, 2021
Successful exploitation of this vulnerability could allow an unauthorized user to access...
High
Unreviewed
CVE-2021-36198
was published
Dec 7, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could...
Moderate
Unreviewed
CVE-2021-43043
was published
Dec 7, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The Samba file...
Moderate
Unreviewed
CVE-2021-43039
was published
Dec 7, 2021
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before...
High
Unreviewed
CVE-2021-40288
was published
Dec 8, 2021
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise...
Moderate
Unreviewed
CVE-2021-29115
was published
Dec 8, 2021
Under certain circumstances, asynchronous functions could have caused a navigation to fail but...
Moderate
Unreviewed
CVE-2021-43536
was published
Dec 9, 2021
Microsoft introduced a new feature in Windows 10 known as Cloud Clipboard which, if enabled, will...
Moderate
Unreviewed
CVE-2021-38505
was published
Dec 9, 2021
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows...
Low
Unreviewed
CVE-2021-25515
was published
Dec 9, 2021
IBM Db2 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an Information Disclosure when using...
High
Unreviewed
CVE-2021-20373
was published
Dec 10, 2021
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1, and 11.5 is vulnerable to...
Moderate
Unreviewed
CVE-2021-38931
was published
Dec 10, 2021
Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from...
Moderate
Unreviewed
CVE-2021-39915
was published
Dec 14, 2021
An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary...
High
Unreviewed
CVE-2021-41065
was published
Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated...
Critical
Unreviewed
CVE-2021-44523
was published
Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated...
Critical
Unreviewed
CVE-2021-44524
was published
Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated...
High
Unreviewed
CVE-2021-44522
was published
Dec 15, 2021
In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory...
Moderate
Unreviewed
CVE-2021-39648
was published
Dec 16, 2021
ProTip!
Advisories are also available from the
GraphQL API