GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

301,786 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1... High Unreviewed

CVE-2021-41753 was published May 24, 2022

Laravel Booking System Booking Core 2.0 is vulnerable to Incorrect Access Control. On the... Moderate Unreviewed

CVE-2021-37331 was published May 24, 2022

The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to... High Unreviewed

CVE-2021-34408 was published May 24, 2022

Kingdee KIS Professional Edition has a privilege escalation vulnerability. Attackers can use the... High Unreviewed

CVE-2021-37274 was published May 24, 2022

In system properties, there is a possible information disclosure due to a missing permission... Moderate Unreviewed

CVE-2021-0681 was published May 24, 2022

A remote command execution vulnerability exists in add_server_service of PPTP_SERVER in Mercury... Critical Unreviewed

CVE-2020-22724 was published May 24, 2022

Cross-site Scripting in the Flamingo theme manager High

CVE-2022-29251 was published for org.xwiki.platform:xwiki-platform-flamingo-theme-ui (Maven) May 25, 2022

A buffer overflow vulnerability has been detected in the firewall function of the device... High Unreviewed

CVE-2022-1669 was published May 25, 2022

In memory management driver, there is a possible information disclosure due to uninitialized data... Moderate Unreviewed

CVE-2021-0423 was published May 24, 2022

Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.3. Moderate Unreviewed

CVE-2022-1926 was published Jun 1, 2022

The REST API in Archer Platform 6.x before 6.11 (6.11.0.0) contains an Authorization Bypass... Moderate Unreviewed

CVE-2022-30585 was published May 27, 2022

A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version... Moderate Unreviewed

CVE-2021-37734 was published May 24, 2022

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent... Moderate Unreviewed

CVE-2021-39866 was published May 24, 2022

Information disclosure from SendEntry in GitLab starting with 10.8 allowed exposure of full URL... Moderate Unreviewed

CVE-2021-39900 was published May 24, 2022

C-DATA FD702XW-X-R430 v2.1.13_X001 was discovered to contain a command injection vulnerability... Critical Unreviewed

CVE-2022-29337 was published May 25, 2022

PublicCMS V4.0.202204.a and below contains an information leak via the component /views/directive... Moderate Unreviewed

CVE-2022-29784 was published Jun 4, 2022

In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local... Critical Unreviewed

CVE-2022-32269 was published Jun 4, 2022

A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to take over... High Unreviewed

CVE-2022-30238 was published Jun 3, 2022

Missing Cryptographic Step in cassproject Moderate

CVE-2022-29229 was published for cassproject (npm) May 25, 2022

Execution with Unnecessary Privileges in GitHub repository polonel/trudesk prior to 1.2.3. High Unreviewed

CVE-2022-1808 was published Jun 1, 2022

A double free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a denial of... High Unreviewed

CVE-2021-42613 was published May 25, 2022

Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=user... Critical Unreviewed

CVE-2022-31989 was published Jun 3, 2022

Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict... Critical Unreviewed

CVE-2022-29084 was published Jun 3, 2022

Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products... High Unreviewed

CVE-2022-32001 was published Jun 3, 2022

Solutions Atlantic Regulatory Reporting System (RRS) v500 is vulnerable to Local File Inclusion ... Moderate Unreviewed

CVE-2022-29597 was published Jun 3, 2022

Previous 1…355…400 Next

Previous 1 2 … 353 354 355 356 357 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301,786 advisories