GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in channels/chan_sip.c in Sangoma Asterisk through 13.29.1, through 16.6... Moderate Unreviewed

CVE-2019-18351 was published May 24, 2022

SonLogger before 6.4.1 is affected by user creation with any user permissions profile (e.g.,... High Unreviewed

CVE-2021-27963 was published May 24, 2022

In deletePackageVersionedInternal of PackageManagerService.java, there is a possible way to exit... High Unreviewed

CVE-2020-0025 was published May 24, 2022

In various methods of WifiNetworkSuggestionsManager.java, there is a possible modification of... High Unreviewed

CVE-2021-0390 was published May 24, 2022

An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0 through 14.2.2. It allows... High Unreviewed

CVE-2020-14987 was published May 24, 2022

Windows 10 Update Assistant Elevation of Privilege Vulnerability High Unreviewed

CVE-2021-27070 was published May 24, 2022

Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead... High Unreviewed

CVE-2020-24263 was published May 24, 2022

Multiple files and folders in Utimaco SecurityServer 4.20.0.4 and 4.31.1.0. are installed with... High Unreviewed

CVE-2020-26155 was published May 24, 2022

Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role... Moderate Unreviewed

CVE-2021-20077 was published May 24, 2022

Grafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor... High Unreviewed

CVE-2021-27962 was published May 24, 2022

OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions,... Critical Unreviewed

CVE-2020-13421 was published May 24, 2022

An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. When... Moderate Unreviewed

CVE-2021-30152 was published May 24, 2022

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2.... Moderate Unreviewed

CVE-2021-30156 was published May 24, 2022

A CWE-269: Improper Privilege Management vulnerability exists in C-Bus Toolkit (V1.15.7 and prior... High Unreviewed

CVE-2021-22716 was published May 24, 2022

An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and... Moderate Unreviewed

CVE-2021-28646 was published May 24, 2022

An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service... High Unreviewed

CVE-2021-28645 was published May 24, 2022

An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to... Moderate Unreviewed

CVE-2021-30477 was published May 24, 2022

An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the... Moderate Unreviewed

CVE-2021-30479 was published May 24, 2022

In the topic moving API in Zulip Server 3.x before 3.4, organization administrators were able to... Moderate Unreviewed

CVE-2021-30487 was published May 24, 2022

An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the... Moderate Unreviewed

CVE-2021-30478 was published May 24, 2022

Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions... High Unreviewed

CVE-2021-31540 was published May 24, 2022

A user authorized to performing a specific type of find query may trigger a denial of service.... Moderate Unreviewed

CVE-2021-20326 was published May 24, 2022

A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. The Ansible log... High Unreviewed

CVE-2021-31918 was published May 24, 2022

The Patient Portal of OpenEMR 5.0.2.1 is affected by a incorrect access control system in portal... High Unreviewed

CVE-2021-32101 was published May 24, 2022

Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1, allows remote authenticated users to... Moderate Unreviewed

CVE-2021-32056 was published May 24, 2022

Previous 1…29…56 Next

Previous 1 2 … 27 28 29 30 31 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories