GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,369 advisories
Filter by severity
The BlackBerry PlayBook service on the Research In Motion (RIM) BlackBerry PlayBook tablet with...
High
Unreviewed
CVE-2011-0291
was published
May 17, 2022
An information disclosure vulnerability exists due to a web server misconfiguration in the...
High
Unreviewed
CVE-2022-21236
was published
Jan 29, 2022
MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to...
High
Unreviewed
CVE-2022-25568
was published
Mar 25, 2022
Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to...
High
Unreviewed
CVE-2022-25571
was published
Mar 25, 2022
The Reporting module in Aseco Lietuva document management system DVS Avilys before 2022-03-10...
High
Unreviewed
CVE-2022-27192
was published
Mar 25, 2022
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A...
High
Unreviewed
CVE-2021-21980
was published
Nov 25, 2021
The Booking Package WordPress plugin before 1.5.29 requires a token for exporting the ical...
High
Unreviewed
CVE-2022-0709
was published
Apr 5, 2022
It was observed that while login into Business-central console, HTTP request discloses sensitive...
High
Unreviewed
CVE-2019-14839
was published
Apr 3, 2022
A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2021-20049
was published
Dec 24, 2021
FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download...
High
Unreviewed
CVE-2022-26591
was published
Apr 7, 2022
Sensitive Information Disclosure (sac-export.csv) in Simple Ajax Chat (WordPress plugin) <= 20220115
High
Unreviewed
CVE-2022-27849
was published
Apr 16, 2022
An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which...
High
Unreviewed
CVE-2021-43287
was published
Apr 15, 2022
Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management...
High
Unreviewed
CVE-2022-27667
was published
Apr 13, 2022
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions), Mendix...
High
Unreviewed
CVE-2022-27241
was published
Apr 13, 2022
Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this...
High
Unreviewed
CVE-2010-1432
was published
Apr 21, 2022
An information disclosure vulnerability exists in the Multi-Camera interface used by the Foscam...
High
Unreviewed
CVE-2017-2874
was published
May 13, 2022
Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X...
High
Unreviewed
CVE-2016-4271
was published
May 14, 2022
BigBlueButton before 2.2.5 allows remote attackers to obtain sensitive files via Local File...
High
Unreviewed
CVE-2020-12112
was published
May 24, 2022
Windows Remote Procedure Call Information Disclosure Vulnerability
High
Unreviewed
CVE-2021-1734
was published
May 24, 2022
Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies...
High
Unreviewed
CVE-2021-3113
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBW30...
High
Unreviewed
CVE-2021-29082
was published
May 24, 2022
Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-28325.
High
Unreviewed
CVE-2021-28324
was published
May 24, 2022
An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump...
High
Unreviewed
CVE-2021-26939
was published
May 24, 2022
IBM Planning Analytics Local 2.0 could allow an attacker to obtain sensitive information due to...
High
Unreviewed
CVE-2020-4985
was published
May 24, 2022
An information disclosure vulnerability was discovered in alipay_function.php in the log file of...
High
Unreviewed
CVE-2020-23768
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API