Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,051 advisories

Loading
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency... High Unreviewed
CVE-2021-21751 was published Dec 28, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle... High Unreviewed
CVE-2021-41788 was published Dec 27, 2021
Inappropriate implementation in input in Google Chrome prior to 96.0.4664.45 allowed an attacker... High Unreviewed
CVE-2021-38015 was published Dec 24, 2021
In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF. High Unreviewed
CVE-2021-45462 was published Dec 24, 2021
Certain Starcharge products are affected by Improper Input Validation. The affected products... High Unreviewed
CVE-2021-45419 was published Dec 23, 2021
An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design... High Unreviewed
CVE-2021-44422 was published Dec 22, 2021
Apache Log4j2 vulnerable to Improper Input Validation and Uncontrolled Recursion High
CVE-2021-45105 was published for org.apache.logging.log4j:log4j-core (Maven) Dec 18, 2021
chrisbloom7 levinebw
ppkarwasz
Credited to chrisbloom7, levinebw, and ppkarwasz
In Audio Aurisys HAL, there is a possible permission bypass due to a missing permission check.... High Unreviewed
CVE-2021-0673 was published Dec 18, 2021
YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number High
CVE-2021-4111 was published for yetiforce/yetiforce-crm (Composer) Dec 16, 2021
In ParsingPackageImpl of ParsingPackageImpl.java, there is a possible parcel serialization... High Unreviewed
CVE-2021-0921 was published Dec 16, 2021
In onCreate of CompanionDeviceActivity.java or DeviceChooserActivity.java, there is a possible... High Unreviewed
CVE-2021-0933 was published Dec 16, 2021
In snoozeNotification of NotificationListenerService.java, there is a possible way to disable... High Unreviewed
CVE-2021-1020 was published Dec 16, 2021
In snoozeNotificationInt of NotificationManagerService.java, there is a possible way to disable... High Unreviewed
CVE-2021-1021 was published Dec 16, 2021
Improper Input Validation in is-email High
CVE-2021-36716 was published for is-email (npm) Dec 10, 2021
OS Command Injection in Strapi High
CVE-2019-19609 was published for strapi (npm) Dec 10, 2021
Improper Input Validation in xdLocalStorage High
CVE-2015-9545 was published for xdLocalStorage (npm) Dec 9, 2021
G-Rath
Credited to G-Rath
Improper Input Validation in xdLocalStorage High
CVE-2015-9544 was published for xdLocalStorage (npm) Dec 9, 2021
G-Rath
Credited to G-Rath
An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows... High Unreviewed
CVE-2021-25510 was published Dec 9, 2021
An improper validation vulnerability in telephony prior to SMR Dec-2021 Release 1 allows... High Unreviewed
CVE-2021-25512 was published Dec 9, 2021
An improper input validation vulnerability in LDFW prior to SMR Dec-2021 Release 1 allows... High Unreviewed
CVE-2021-25517 was published Dec 9, 2021
There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-37047 was published Dec 8, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-37048 was published Dec 8, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-37060 was published Dec 8, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-37081 was published Dec 8, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database