GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

516 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

TadTools special page is vulnerable to authorization bypass, thus remote attackers can use the... High Unreviewed

CVE-2021-41975 was published May 24, 2022

In Eclipse Mosquitto versions 2.0 to 2.0.11, when using the dynamic security plugin, if the... Moderate Unreviewed

CVE-2021-34434 was published May 24, 2022

Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is... Low Unreviewed

CVE-2021-28626 was published May 24, 2022

Improper authorization vulnerability in QSAN Storage Manager allows remote privileged users to... Critical Unreviewed

CVE-2021-32523 was published May 24, 2022

An improper authorization flaw was discovered in openstack-selinux's applied policy where it does... Moderate Unreviewed

CVE-2020-1690 was published May 24, 2022

The wp_ajax_upload-remote-file AJAX action of the External Media WordPress plugin before 1.0.34... High Unreviewed

CVE-2021-24311 was published May 24, 2022

A flaw was found in Red Hat Satellite's Job Invocation, where the "User Input" entry was not... Moderate Unreviewed

CVE-2020-10716 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the WP... High Unreviewed

CVE-2021-24188 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24193 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24194 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24190 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24192 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24195 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the WP... High Unreviewed

CVE-2021-24191 was published May 24, 2022

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 ... Critical Unreviewed

CVE-2021-28799 was published May 24, 2022

Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper... Moderate Unreviewed

CVE-2021-21096 was published May 24, 2022

Improper input check in Samsung Internet prior to version 13.2.1.46 allows attackers to launch... Moderate Unreviewed

CVE-2021-25354 was published May 24, 2022

A vulnerability was found in Moodle affecting 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and... Moderate Unreviewed

CVE-2019-14828 was published May 24, 2022

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure... High Unreviewed

CVE-2020-27779 was published May 24, 2022

Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017... Moderate Unreviewed

CVE-2020-24431 was published May 24, 2022

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT... Critical Unreviewed

CVE-2020-12500 was published May 24, 2022

Banking services from SAP 9.0 (Bank Analyzer), version - 500, and SAP S/4HANA for financial... Moderate Unreviewed

CVE-2020-6311 was published May 24, 2022

A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could... High Unreviewed

CVE-2020-3267 was published May 24, 2022

A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION", where sub... Moderate Unreviewed

CVE-2020-1720 was published May 24, 2022

All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an... Moderate Unreviewed

CVE-2019-14870 was published May 24, 2022

Previous 1…17…21 Next

Previous 1 2 … 15 16 17 18 19 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

516 advisories