GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
221,456 advisories
Filter by severity
There is an Injection attack vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37033
was published
Nov 24, 2021
There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37031
was published
Nov 24, 2021
There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37035
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37026
was published
Nov 24, 2021
There is a Heap-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation...
Critical
Unreviewed
CVE-2021-37022
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37025
was published
Nov 24, 2021
There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of...
Moderate
Unreviewed
CVE-2021-37023
was published
Nov 24, 2021
The Download Plugin WordPress plugin before 1.6.1 does not have capability and CSRF checks in the...
Moderate
Unreviewed
CVE-2021-24703
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37019
was published
Nov 24, 2021
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei...
High
Unreviewed
CVE-2021-37010
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37017
was published
Nov 24, 2021
There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is...
Moderate
Unreviewed
CVE-2021-22356
was published
Nov 24, 2021
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation...
High
Unreviewed
CVE-2021-37004
was published
Nov 24, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37006
was published
Nov 24, 2021
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280_TD V100R005C00 and...
Moderate
Unreviewed
CVE-2021-37036
was published
Nov 24, 2021
The SQL injection vulnerability in the Hide My WP WordPress plugin (versions <= 6.2.3) is...
Critical
Unreviewed
CVE-2021-36916
was published
Nov 25, 2021
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A...
High
Unreviewed
CVE-2021-21980
was published
Nov 25, 2021
The vSphere Web Client (FLEX/Flash) contains an SSRF (Server Side Request Forgery) vulnerability...
Critical
Unreviewed
CVE-2021-22049
was published
Nov 25, 2021
A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS,...
High
Unreviewed
CVE-2021-34424
was published
Nov 25, 2021
A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of...
High
Unreviewed
CVE-2021-3552
was published
Nov 25, 2021
An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted...
Moderate
Unreviewed
CVE-2021-43268
was published
Nov 25, 2021
Improper neutralization of HTTP request headers for scripting syntax vulnerability in the Web GUI...
Moderate
Unreviewed
CVE-2021-20844
was published
Nov 25, 2021
Cross-site request forgery (CSRF) vulnerability in Push Notifications for WordPress (Lite)...
Unknown
Unreviewed
CVE-2021-20846
was published
Nov 25, 2021
Improper authorization in handler for custom URL scheme vulnerability in Android App 'Mercari ...
High
Unreviewed
CVE-2021-20835
was published
Nov 25, 2021
Cross-site scripting vulnerability in Booking Package - Appointment Booking Calendar System...
Moderate
Unreviewed
CVE-2021-20840
was published
Nov 25, 2021
ProTip!
Advisories are also available from the
GraphQL API