Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,652
Erlang
34
GitHub Actions
26
Go
2,257
Maven
5,000+
npm
3,909
NuGet
704
pip
3,680
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,882 advisories

Loading
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1... High Unreviewed
CVE-2016-1351 was published May 17, 2022
ExpressionEngine before 5.4.2 and 6.x before 6.0.3 allows PHP Code Injection by certain... High Unreviewed
CVE-2021-27230 was published May 24, 2022
There's a flaw in the BFD library of binutils in versions before 2.36. An attacker who supplies a... High Unreviewed
CVE-2021-3487 was published May 24, 2022
An issue was discovered in Quadbase EspressReports ES 7 Update 9. An authenticated user is able... High Unreviewed
CVE-2020-24985 was published May 24, 2022
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-31950, CVE... High Unreviewed
CVE-2021-31948 was published May 24, 2022
VMware Tools for Windows (11.x.y prior to 11.2.6), VMware Remote Console for Windows (12.x prior... High Unreviewed
CVE-2021-21999 was published May 24, 2022
There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to... High Unreviewed
CVE-2020-27828 was published May 24, 2022
Improper Input Validation in Undertow High
CVE-2020-1757 was published for io.undertow:undertow-core (Maven) May 24, 2022
yawkat
A remote code execution vulnerability exists in Chamilo through 1.11.14 due to improper input... High Unreviewed
CVE-2021-31933 was published May 24, 2022
An improper input validation in FortiAI v1.4.0 and earlier may allow an authenticated user to... High Unreviewed
CVE-2021-24023 was published May 24, 2022
Memory corruption due to improper input validation while processing IO control which is... High Unreviewed
CVE-2021-1892 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1317 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1316 was published May 24, 2022
Improper Input Validation in Nagios Fusion 4.1.8 and earlier allows an authenticated attacker to... High Unreviewed
CVE-2020-28905 was published May 24, 2022
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2022-24417 was published May 27, 2022
An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an... High Unreviewed
CVE-2020-35683 was published May 24, 2022
Adobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an... High Unreviewed
CVE-2022-38408 was published Sep 17, 2022
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2022-24418 was published May 27, 2022
Improper Input Validation in RESTEasy High
CVE-2020-1695 was published for org.jboss.resteasy:resteasy-client (Maven) May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1315 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1314 was published May 24, 2022
Winny 2.0b7.1 and earlier does not properly process node information, which has unspecified... High Unreviewed
CVE-2010-2362 was published May 17, 2022
Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input... High Unreviewed
CVE-2010-1591 was published May 17, 2022
The Sidebar gadget in ITN News Gadget (aka ITN Hub Gadget) 1.06 for Windows Vista, and possibly... High Unreviewed
CVE-2008-7037 was published May 17, 2022
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer... High Unreviewed
CVE-2021-1108 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database