GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,615
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,078

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,972 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Microsoft SharePoint Server Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-31173 was published May 24, 2022

A ZTE Smart STB is impacted by an information leak vulnerability. The device did not fully verify... Moderate Unreviewed

CVE-2021-21722 was published May 24, 2022

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could... Moderate Unreviewed

CVE-2021-1087 was published May 24, 2022

In JetBrains YouTrack before 2020.6.1767, an issue's existence could be disclosed via YouTrack... Moderate Unreviewed

CVE-2021-25767 was published May 24, 2022

In JetBrains Hub before 2020.1.12669, information disclosure via the public API was possible. Moderate Unreviewed

CVE-2021-25760 was published May 24, 2022

In JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed. Moderate Unreviewed

CVE-2021-25771 was published May 24, 2022

IBM Cloud Pak System 2.3 could allow a local user in some situations to view the artifacts of... Low Unreviewed

CVE-2021-20478 was published May 24, 2022

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly... Moderate Unreviewed

CVE-2021-31546 was published May 24, 2022

SAP NetWeaver Master Data Management, versions - 710, 710.750, allows a malicious unauthorized... High Unreviewed

CVE-2021-21482 was published May 24, 2022

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1... Moderate Unreviewed

CVE-2019-18222 was published May 24, 2022

Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled,... Moderate Unreviewed

CVE-2019-16910 was published May 24, 2022

An information disclosure vulnerability in Web Vulnerability Scan profile of Fortinet's FortiWeb... Moderate Unreviewed

CVE-2020-15942 was published May 24, 2022

An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an... Moderate Unreviewed

CVE-2021-21485 was published May 24, 2022

Microsoft Windows Codecs Library Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-28317 was published May 24, 2022

Server for NFS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-31975. High Unreviewed

CVE-2021-31976 was published May 24, 2022

Event Tracing for Windows Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-31972 was published May 24, 2022

IBM Cloud Pak for Data 3.0 could allow an authenticated user to obtain sensitive information when... Moderate Unreviewed

CVE-2021-20486 was published May 24, 2022

IBM InfoSphere Information Server 11.7 could allow an attacker to obtain sensitive information by... Moderate Unreviewed

CVE-2021-29681 was published May 24, 2022

The (1) trim, (2) ltrim, (3) rtrim, and (4) substr_replace functions in PHP 5.2 through 5.2.13... Moderate Unreviewed

CVE-2010-2190 was published May 17, 2022

In Octopus Deploy 2019.4.0 through 2019.6.6 and 2019.7.0 through 2019.7.7, an authenticated... Moderate Unreviewed

CVE-2019-14525 was published May 24, 2022

Windows Projected File System FS Filter Driver Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-31191 was published May 24, 2022

Windows CSC Service Information Disclosure Vulnerability Moderate Unreviewed

CVE-2021-28479 was published May 24, 2022

IBM QRadar SIEM 7.3 and 7.4 could disclose sensitive information about other domains which could... Moderate Unreviewed

CVE-2020-4883 was published May 24, 2022

Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in... Moderate Unreviewed

CVE-2020-14929 was published May 24, 2022

Under certain conditions SAP Solution Manager, version - 720, allows a high privileged attacker... Moderate Unreviewed

CVE-2021-21483 was published May 24, 2022

Previous 1…390…399 Next

Previous 1 2 … 388 389 390 391 392 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,972 advisories