GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,487

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,337 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Post Expirator WordPress plugin before 2.6.0 does not have proper capability checks in place,... Moderate Unreviewed

CVE-2021-24783 was published May 24, 2022

Incorrect Authorization in GitLab CE/EE 13.4 or above allows a user with guest membership in a... Moderate Unreviewed

CVE-2021-39902 was published May 24, 2022

In all versions of GitLab CE/EE since version 13.0, a privileged user, through an API call, can... Moderate Unreviewed

CVE-2021-39903 was published May 24, 2022

An Improper Access Control vulnerability in the GraphQL API in GitLab CE/EE since version 13.1... Moderate Unreviewed

CVE-2021-39904 was published May 24, 2022

An improper access control flaw in GitLab CE/EE since version 13.9 exposes private email address... Moderate Unreviewed

CVE-2021-39911 was published May 24, 2022

Improper authorization vulnerability in Samsung Flow mobile application prior to 4.8.03.5 allows... Moderate Unreviewed

CVE-2021-25507 was published May 24, 2022

Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via... Moderate Unreviewed

CVE-2021-25506 was published May 24, 2022

An improper access control vulnerability [CWE-284] in FortiManager versions 6.4.4 and 6.4.5 may... Moderate Unreviewed

CVE-2021-26107 was published May 24, 2022

The Stylish Price List WordPress plugin before 6.9.0 does not perform capability checks in its... Moderate Unreviewed

CVE-2021-24757 was published May 24, 2022

The Logo Slider and Showcase WordPress plugin before 1.3.37 allows Editor users to update the... Moderate Unreviewed

CVE-2021-24742 was published May 24, 2022

The Stylish Price List WordPress plugin before 6.9.1 does not perform capability checks in its... Moderate Unreviewed

CVE-2021-24770 was published May 24, 2022

Microsoft Surface Pro 3 Security Feature Bypass Vulnerability Moderate Unreviewed

CVE-2021-42299 was published May 24, 2022

IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set... Moderate Unreviewed

CVE-2021-29883 was published May 24, 2022

Incorrect Authorization in MySQL Connector Java Moderate

CVE-2021-2471 was published for mysql:mysql-connector-java (Maven) May 24, 2022

Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft ... Moderate Unreviewed

CVE-2021-35553 was published May 24, 2022

Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that... Moderate Unreviewed

CVE-2021-35551 was published May 24, 2022

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:... Moderate Unreviewed

CVE-2021-35552 was published May 24, 2022

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed

CVE-2021-35550 was published May 24, 2022

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed

CVE-2021-35559 was published May 24, 2022

A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass... Moderate Unreviewed

CVE-2021-40990 was published May 24, 2022

Operation restriction bypass in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9... Moderate Unreviewed

CVE-2021-20803 was published May 24, 2022

Improper authorization in handler for custom URL scheme vulnerability in Nike App for Android... Moderate Unreviewed

CVE-2021-20834 was published May 24, 2022

Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers... Moderate Unreviewed

CVE-2021-41564 was published May 24, 2022

Tad Web is vulnerable to authorization bypass, thus remote attackers can exploit the... Moderate Unreviewed

CVE-2021-41568 was published May 24, 2022

Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers... Moderate Unreviewed

CVE-2021-41976 was published May 24, 2022

Previous 1…30…54 Next

Previous 1 2 … 28 29 30 31 32 … 53 54 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,337 advisories