GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,667
Composer 4,466
Erlang 33
GitHub Actions 23
Go 2,166
Maven 5,398
npm 3,830
NuGet 696
pip 3,507
Pub 12
RubyGems 909
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,804

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,641 advisories

Filter by severity

Sort by

Least recently updated

A Remote Command Execution vulnerability on the background in zrlog 2.2.2, at the upload avatar... Critical Unreviewed

CVE-2021-44093 was published May 24, 2022

PowerCMS XMLRPC API of PowerCMS 5.19 and earlier, PowerCMS 4.49 and earlier, PowerCMS 3.295 and... Critical Unreviewed

CVE-2021-20850 was published May 24, 2022

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender... Critical Unreviewed

CVE-2021-3554 was published May 24, 2022

A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS,... Critical Unreviewed

CVE-2021-34423 was published May 24, 2022

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed

CVE-2021-37016 was published May 24, 2022

Dell EMC CloudLink 7.1 and all prior versions contain an Arbitrary File Creation Vulnerability. A... Critical Unreviewed

CVE-2021-36314 was published May 24, 2022

OS Command Injection vulnerability in debug_fcgi of D-Link DWR-932C E1 firmware allows a remote... Critical Unreviewed

CVE-2021-42784 was published May 24, 2022

In the wazuh-slack active response script in Wazuh before 4.2.5, untrusted user agents are passed... Critical Unreviewed

CVE-2021-44079 was published May 24, 2022

ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a... Critical Unreviewed

CVE-2021-26614 was published May 24, 2022

Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an... Critical Unreviewed

CVE-2021-36308 was published May 24, 2022

Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains an... Critical Unreviewed

CVE-2021-36306 was published May 24, 2022

Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search... Critical Unreviewed

CVE-2021-44026 was published May 24, 2022

An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality... Critical Unreviewed

CVE-2021-40391 was published May 24, 2022

GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component... Critical Unreviewed

CVE-2021-37322 was published May 24, 2022

A directory traversal issue in ResourceSpace 9.6 before 9.6 rev 18277 allows remote... Critical Unreviewed

CVE-2021-41950 was published May 24, 2022

A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 <... Critical Unreviewed

CVE-2021-41765 was published May 24, 2022

Sourcecodester Online Learning System 2.0 is vunlerable to sql injection authentication bypass in... Critical Unreviewed

CVE-2021-42580 was published May 24, 2022

An attacker-controlled pointer free in Busybox's hush applet leads to denial of service and... Critical Unreviewed

CVE-2021-42377 was published May 24, 2022

An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of... Critical Unreviewed

CVE-2021-42374 was published May 24, 2022

Due to improper sanitization MedData HBYS software suffers from a remote SQL injection... Critical Unreviewed

CVE-2021-43361 was published May 24, 2022

Due to improper sanitization MedData HBYS software suffers from a remote SQL injection... Critical Unreviewed

CVE-2021-43362 was published May 24, 2022

Due to improper sanitization iPack SCADA Automation software suffers from a remote SQL injection... Critical Unreviewed

CVE-2021-3958 was published May 24, 2022

The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress... Critical Unreviewed

CVE-2021-43048 was published May 24, 2022

The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress... Critical Unreviewed

CVE-2021-43047 was published May 24, 2022

The Company's Recruitment Management System in id=2 of the parameter from view_vacancy app on... Critical Unreviewed

CVE-2021-41931 was published May 24, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,641 advisories