GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,053

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

240 advisories

Filter by severity

Sort by

Least recently updated

HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR... Moderate Unreviewed

CVE-2021-27668 was published May 24, 2022

Rapid7 Nexpose version 6.6.95 and earlier allows authenticated users of the Security Console to... Moderate Unreviewed

CVE-2021-31868 was published May 24, 2022

An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n... Moderate Unreviewed

CVE-2020-21936 was published May 24, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists in C-Bus Toolkit v1... Moderate Unreviewed

CVE-2021-22784 was published May 24, 2022

White Shark System (WSS) 1.3.2 has a sensitive information disclosure vulnerability. The... Moderate Unreviewed

CVE-2020-20472 was published May 24, 2022

There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone.... Moderate Unreviewed

CVE-2021-22316 was published May 24, 2022

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired... Moderate Unreviewed

CVE-2020-24588 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could... Moderate Unreviewed

CVE-2021-1499 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated,... Moderate Unreviewed

CVE-2021-1396 was published May 24, 2022

SOOIL Developments CoLtd DiabecareRS, AnyDana-i, AnyDana-A, The communication protocol of the... Moderate Unreviewed

CVE-2020-27272 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an... Moderate Unreviewed

CVE-2021-1246 was published May 24, 2022

User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of... Moderate Unreviewed

CVE-2020-7369 was published May 24, 2022

User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of... Moderate Unreviewed

CVE-2020-7370 was published May 24, 2022

An issue was discovered on D-Link DSR-250N before 3.17B devices. The CGI script... Moderate Unreviewed

CVE-2020-26567 was published May 24, 2022

An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php ... Moderate Unreviewed

CVE-2020-11579 was published May 24, 2022

The includes/gateways/stripe/includes/admin/admin-actions.php in GiveWP plugin through 2.5.9 for... Moderate Unreviewed

CVE-2020-20627 was published May 24, 2022

The Mitel MiCollab application before 9.1.332 for iOS could allow an unauthorized user to access... Moderate Unreviewed

CVE-2020-13767 was published May 24, 2022

An Authentication Bypass vulnerability in the Published Area of the web conferencing component of... Moderate Unreviewed

CVE-2020-11797 was published May 24, 2022

Diebold Nixdorf ProCash 2100xe USB ATMs running Wincor Probase version 1.1.30 do not encrypt,... Moderate Unreviewed

CVE-2020-9062 was published May 24, 2022

A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the... Moderate Unreviewed

CVE-2019-5591 was published May 24, 2022

Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on... Moderate Unreviewed

CVE-2020-6294 was published May 24, 2022

An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. There exists an... Moderate Unreviewed

CVE-2020-15894 was published May 24, 2022

In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize... Moderate Unreviewed

CVE-2020-12028 was published May 24, 2022

openSIS through 7.4 has Incorrect Access Control. Moderate Unreviewed

CVE-2020-13382 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

240 advisories