GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,370
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,749
Maven 4,978
npm 3,509
NuGet 609
pip 3,084
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,313

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,911 advisories

Filter by severity

Sort by

Least recently updated

The Logo Showcase with Slick Slider WordPress plugin before 1.2.5 does not have CSRF and... Moderate Unreviewed

CVE-2021-24730 was published Mar 1, 2022

bookstack is vulnerable to Improper Access Control Moderate

CVE-2021-4194 was published for ssddanbrown/bookstack (Composer) Jan 8, 2022

The Improved Include Page WordPress plugin through 1.2 allows passing shortcode attributes with... Moderate Unreviewed

CVE-2021-24845 was published Dec 14, 2021

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and... Moderate Unreviewed

CVE-2015-3152 was published May 14, 2022

Philips MRI 1.5T and MRI 3T Version 5.x.x does not restrict or incorrectly restricts access to a... Moderate Unreviewed

CVE-2021-26262 was published Nov 20, 2021

The Weintek cMT product line is vulnerable to various improper access controls, which may allow... Critical Unreviewed

CVE-2021-27444 was published May 17, 2022

Matrikon, a subsidary of Honeywell Matrikon OPC Server (all versions) is vulnerable to a... High Unreviewed

CVE-2022-1261 was published May 27, 2022

A flaw was found in the default configuration of dnsmasq, as shipped with Fedora versions prior... Moderate Unreviewed

CVE-2020-14312 was published May 24, 2022

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and... Critical Unreviewed

CVE-2022-25932 was published Nov 9, 2022

Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control... High Unreviewed

CVE-2020-9668 was published May 24, 2022

A vulnerability in the web-based messaging service interface of Cisco SD-WAN vManage Software... High Unreviewed

CVE-2021-1284 was published May 24, 2022

The import_data function of the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4... High Unreviewed

CVE-2021-24353 was published May 24, 2022

A flaw was found in the Red Hat 3scale API Management Platform, where member permissions for an... High Unreviewed

CVE-2020-14388 was published May 24, 2022

The Realteo WordPress plugin before 1.2.4, used by the Findeo Theme, did not ensure that the... Moderate Unreviewed

CVE-2021-24238 was published May 24, 2022

In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, the lack of capability... Moderate Unreviewed

CVE-2021-24355 was published May 24, 2022

In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, a lack of capability... High Unreviewed

CVE-2021-24356 was published May 24, 2022

IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x... Moderate Unreviewed

CVE-2016-2960 was published May 17, 2022

There is a flaw in the code used to configure the internal gateway firewall when the gateway's... Critical Unreviewed

CVE-2020-12030 was published May 24, 2022

Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes... Moderate Unreviewed

CVE-2016-1474 was published May 17, 2022

Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed

CVE-2016-3880 was published May 17, 2022

Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0... Moderate Unreviewed

CVE-2016-3898 was published May 17, 2022

A vulnerability in Cisco Webex Meetings for Android could allow an authenticated, remote attacker... Moderate Unreviewed

CVE-2021-1467 was published May 24, 2022

internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed

CVE-2016-3883 was published May 17, 2022

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

Previous 1 2 3 4 5 … 76 77 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,911 advisories