GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,307 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

NeDi 1.9C allows an authenticated user to inject PHP code in the System Files function on the... Critical Unreviewed

CVE-2021-26753 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to bypass... Critical Unreviewed

CVE-2021-27177 was published May 24, 2022

Electric Coin Company Zcashd before 2.1.1-1 allows attackers to trigger consensus failure and... High Unreviewed

CVE-2020-8806 was published May 24, 2022

An issue was discovered in Epikur before 20.1.1. The Epikur server contains the checkPasswort()... Critical Unreviewed

CVE-2020-10539 was published May 24, 2022

An improper access control information disclosure vulnerability in Trend Micro Apex One, Apex One... Moderate Unreviewed

CVE-2021-25246 was published May 24, 2022

An improper access control vulnerability in Worry-Free Business Security 10.0 SP1 could allow an... Moderate Unreviewed

CVE-2021-25244 was published May 24, 2022

An improper access control vulnerability in Worry-Free Business Security 10.0 SP1 could allow an... Moderate Unreviewed

CVE-2021-25245 was published May 24, 2022

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and... Moderate Unreviewed

CVE-2021-25229 was published May 24, 2022

An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan... Moderate Unreviewed

CVE-2021-25228 was published May 24, 2022

This vulnerability allows network-adjacent attackers to disclose sensitive information on... Moderate Unreviewed

CVE-2020-27873 was published May 24, 2022

In JetBrains TeamCity before 2020.2.1, permissions during token removal were checked improperly. Moderate Unreviewed

CVE-2021-25777 was published May 24, 2022

In JetBrains TeamCity before 2020.2.1, a user could get access to the GitHub access token of... Moderate Unreviewed

CVE-2021-25774 was published May 24, 2022

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control,... Critical Unreviewed

CVE-2020-29165 was published May 24, 2022

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this... Critical Unreviewed

CVE-2020-2506 was published May 24, 2022

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this... Critical Unreviewed

CVE-2020-2507 was published May 24, 2022

In the rcp client in MIT krb5-appl through 1.0.3, malicious servers could bypass intended access... High Unreviewed

CVE-2019-25018 was published May 24, 2022

A library index page in NuPoint Messenger in Mitel MiCollab before 9.2 FP1 could allow an... Critical Unreviewed

CVE-2020-35547 was published May 24, 2022

Archer before 6.9 P1 (6.9.0.1) contains an improper access control vulnerability in an API. A... Moderate Unreviewed

CVE-2020-29538 was published May 24, 2022

An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... Moderate Unreviewed

CVE-2020-28406 was published May 24, 2022

An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... High Unreviewed

CVE-2020-28405 was published May 24, 2022

An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... Moderate Unreviewed

CVE-2020-28404 was published May 24, 2022

The Hide-Thread-Content plugin through 2021-01-27 for MyBB allows remote attackers to bypass... High Unreviewed

CVE-2021-3337 was published May 24, 2022

An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... Moderate Unreviewed

CVE-2020-28401 was published May 24, 2022

An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... High Unreviewed

CVE-2020-28402 was published May 24, 2022

PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User Mode Write Access... High Unreviewed

CVE-2021-26026 was published May 24, 2022

Previous 1…66…93 Next

Previous 1 2 … 64 65 66 67 68 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,307 advisories