GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,252

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,450 advisories

Filter by severity

Sort by

Least recently updated

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and... Moderate Unreviewed

CVE-2015-3152 was published May 14, 2022

Philips MRI 1.5T and MRI 3T Version 5.x.x does not restrict or incorrectly restricts access to a... Moderate Unreviewed

CVE-2021-26262 was published Nov 20, 2021

The Weintek cMT product line is vulnerable to various improper access controls, which may allow... Critical Unreviewed

CVE-2021-27444 was published May 17, 2022

Matrikon, a subsidary of Honeywell Matrikon OPC Server (all versions) is vulnerable to a... High Unreviewed

CVE-2022-1261 was published May 27, 2022

A flaw was found in the default configuration of dnsmasq, as shipped with Fedora versions prior... Moderate Unreviewed

CVE-2020-14312 was published May 24, 2022

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and... Critical Unreviewed

CVE-2022-25932 was published Nov 9, 2022

Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control... High Unreviewed

CVE-2020-9668 was published May 24, 2022

A vulnerability in the web-based messaging service interface of Cisco SD-WAN vManage Software... High Unreviewed

CVE-2021-1284 was published May 24, 2022

The import_data function of the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4... High Unreviewed

CVE-2021-24353 was published May 24, 2022

A flaw was found in the Red Hat 3scale API Management Platform, where member permissions for an... High Unreviewed

CVE-2020-14388 was published May 24, 2022

The Realteo WordPress plugin before 1.2.4, used by the Findeo Theme, did not ensure that the... Moderate Unreviewed

CVE-2021-24238 was published May 24, 2022

In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, a lack of capability... High Unreviewed

CVE-2021-24356 was published May 24, 2022

In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, the lack of capability... Moderate Unreviewed

CVE-2021-24355 was published May 24, 2022

IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x... Moderate Unreviewed

CVE-2016-2960 was published May 17, 2022

There is a flaw in the code used to configure the internal gateway firewall when the gateway's... Critical Unreviewed

CVE-2020-12030 was published May 24, 2022

Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes... Moderate Unreviewed

CVE-2016-1474 was published May 17, 2022

Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0... Moderate Unreviewed

CVE-2016-3898 was published May 17, 2022

Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed

CVE-2016-3880 was published May 17, 2022

A vulnerability in Cisco Webex Meetings for Android could allow an authenticated, remote attacker... Moderate Unreviewed

CVE-2021-1467 was published May 24, 2022

internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed

CVE-2016-3883 was published May 17, 2022

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

Improper access control vulnerability in FirmwareUpgrade in QSAN Storage Manager allows remote... High Unreviewed

CVE-2021-32514 was published May 24, 2022

The Timetable and Event Schedule WordPress plugin before 2.4.2 does not have proper access... Moderate Unreviewed

CVE-2021-24584 was published May 24, 2022

The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require... Moderate Unreviewed

CVE-2021-24788 was published May 24, 2022

Previous 1 2 3 4 5 … 97 98 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,450 advisories