GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,840 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Aspera High-Speed Transfer 4.3.1 and earlier could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2022-22391 was published Apr 15, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions), Mendix... High Unreviewed

CVE-2022-27241 was published Apr 13, 2022

The Visual Form Builder WordPress plugin before 3.0.6 does not perform access control on entry... Moderate Unreviewed

CVE-2022-0140 was published Apr 13, 2022

Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management... High Unreviewed

CVE-2022-27667 was published Apr 13, 2022

Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal ... Moderate Unreviewed

CVE-2021-28544 was published Apr 13, 2022

Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to... Moderate Unreviewed

CVE-2022-27575 was published Apr 12, 2022

Apperta Foundation OpenEyes 3.5.1 allows remote attackers to view the sensitive information of... Moderate Unreviewed

CVE-2021-40375 was published Apr 7, 2022

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in... Moderate Unreviewed

CVE-2021-43205 was published Apr 7, 2022

FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download... High Unreviewed

CVE-2022-26591 was published Apr 7, 2022

Zoho ManageEngine ServiceDesk Plus before 13001 allows anyone to know the organisation's default... Moderate Unreviewed

CVE-2022-25245 was published Apr 6, 2022

The Booking Package WordPress plugin before 1.5.29 requires a token for exporting the ical... High Unreviewed

CVE-2022-0709 was published Apr 5, 2022

The JobMonster Theme was vulnerable to Directory Listing in the /wp-content/uploads/jobmonster/... Moderate Unreviewed

CVE-2022-1166 was published Apr 5, 2022

It was observed that while login into Business-central console, HTTP request discloses sensitive... High Unreviewed

CVE-2019-14839 was published Apr 3, 2022

Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A... Moderate Unreviewed

CVE-2022-23158 was published Apr 2, 2022

Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A... Moderate Unreviewed

CVE-2022-23157 was published Apr 2, 2022

An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to... Moderate Unreviewed

CVE-2022-0331 was published Mar 30, 2022

A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as... High Unreviewed

CVE-2022-1077 was published Mar 30, 2022

A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi... Moderate Unreviewed

CVE-2022-0494 was published Mar 26, 2022

The Reporting module in Aseco Lietuva document management system DVS Avilys before 2022-03-10... High Unreviewed

CVE-2022-27192 was published Mar 25, 2022

Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to... High Unreviewed

CVE-2022-25571 was published Mar 25, 2022

GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP... High Unreviewed

CVE-2021-27422 was published Mar 24, 2022

Accounted time is shown in the Ticket Detail View (External Interface), even if ExternalFrontend:... Moderate Unreviewed

CVE-2022-1004 was published Mar 22, 2022

IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 and IBM Business Process Manager 8.5... Moderate Unreviewed

CVE-2021-39046 was published Mar 19, 2022

This issue was addressed with improved checks. This issue is fixed in tvOS 15.4, iOS 15.4 and... Moderate Unreviewed

CVE-2022-22621 was published Mar 19, 2022

When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows... Moderate Unreviewed

CVE-2022-25248 was published Mar 17, 2022

Previous 1…349…354 Next

Previous 1 2 … 347 348 349 350 351 352 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,840 advisories