GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
609 advisories
Filter by severity
Incorrect permission enforcement in UmbracoCms
Moderate
CVE-2020-29454
was published
for
UmbracoCms
(NuGet)
Apr 13, 2021
Authenticated path traversal in Umbraco CMS
Moderate
CVE-2020-5811
was published
for
UmbracoCms
(NuGet)
Apr 13, 2021
Out-of-bounds Write in Chakra
High
CVE-2020-17131
was published
for
Microsoft.ChakraCore
(NuGet)
Apr 13, 2021
.NET Core Information Disclosure
High
CVE-2018-8292
was published
for
System.Net.Http
(NuGet)
Apr 21, 2021
.NET Core Remote Code Execution Vulnerability
Critical
CVE-2021-26701
was published
for
System.Text.Encodings.Web
(NuGet)
Apr 21, 2021
ProTip!
Advisories are also available from the
GraphQL API