GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,031
Composer 4,303
Erlang 31
GitHub Actions 21
Go 2,072
Maven 5,246
npm 3,744
NuGet 669
pip 3,430
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,584

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,378 advisories

Filter by severity

Sort by

Least recently updated

DotBr 0.1 stores config.inc with insufficient access control under the web document root, which... High Unreviewed

CVE-2003-1404 was published Apr 29, 2022

In Bender/ebee Charge Controllers in multiple versions are prone to an RFID leak. The RFID of the... High Unreviewed

CVE-2021-34589 was published Apr 28, 2022

IBM QRadar SIEM 7.3, 7.4, and 7.5 in some senarios may reveal authorized service tokens to other... High Unreviewed

CVE-2021-38919 was published Apr 28, 2022

An information disclosure flaw was found in the way the Java Virtual Machine (JVM) implementation... High Unreviewed

CVE-2012-4420 was published Apr 23, 2022

gnome-system-log polkit policy allows arbitrary files on the system to be read High Unreviewed

CVE-2012-5535 was published Apr 23, 2022

mediawiki allows deleted text to be exposed High Unreviewed

CVE-2012-0046 was published Apr 23, 2022

Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this... High Unreviewed

CVE-2010-1432 was published Apr 21, 2022

Sensitive Information Disclosure (sac-export.csv) in Simple Ajax Chat (WordPress plugin) <= 20220115 High Unreviewed

CVE-2022-27849 was published Apr 16, 2022

An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which... High Unreviewed

CVE-2021-43287 was published Apr 15, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions), Mendix... High Unreviewed

CVE-2022-27241 was published Apr 13, 2022

Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management... High Unreviewed

CVE-2022-27667 was published Apr 13, 2022

FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download... High Unreviewed

CVE-2022-26591 was published Apr 7, 2022

The Booking Package WordPress plugin before 1.5.29 requires a token for exporting the ical... High Unreviewed

CVE-2022-0709 was published Apr 5, 2022

It was observed that while login into Business-central console, HTTP request discloses sensitive... High Unreviewed

CVE-2019-14839 was published Apr 3, 2022

A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as... High Unreviewed

CVE-2022-1077 was published Mar 30, 2022

The Reporting module in Aseco Lietuva document management system DVS Avilys before 2022-03-10... High Unreviewed

CVE-2022-27192 was published Mar 25, 2022

Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to... High Unreviewed

CVE-2022-25571 was published Mar 25, 2022

GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP... High Unreviewed

CVE-2021-27422 was published Mar 24, 2022

Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access... High Unreviewed

CVE-2022-22547 was published Mar 11, 2022

Sensitive information disclosure discovered in wpDiscuz WordPress plugin (versions <= 7.3.11). High Unreviewed

CVE-2022-23984 was published Feb 22, 2022

The vulnerability discovered in WordPress Perfect Brands for WooCommerce plugin (versions <= 2.0... High Unreviewed

CVE-2022-23982 was published Feb 19, 2022

** UNSUPPORTED WHEN ASSIGNED ** Emerson Dixell XWEB-500 products are affected by information... High Unreviewed

CVE-2021-45421 was published Feb 15, 2022

A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of... High Unreviewed

CVE-2021-22785 was published Feb 12, 2022

An Information Disclosure vulnerability for JT files in Autodesk Inventor 2022, 2021, 2020, 2019... High Unreviewed

CVE-2021-40159 was published Feb 11, 2022

SAP Adaptive Server Enterprise (ASE) - version 16.0, installation makes an entry in the system... High Unreviewed

CVE-2022-22528 was published Feb 11, 2022

Previous 1 2 … 52 53 54 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,378 advisories