GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
7,857 advisories
Filter by severity
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects...
High
Unreviewed
CVE-2021-45648
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R6400v2...
Moderate
Unreviewed
CVE-2021-45649
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352...
High
Unreviewed
CVE-2021-45652
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK50...
High
Unreviewed
CVE-2021-45651
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R7000...
High
Unreviewed
CVE-2021-45650
was published
Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352...
High
Unreviewed
CVE-2021-45653
was published
Dec 27, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information.
High
Unreviewed
CVE-2021-45654
was published
Dec 27, 2021
A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker...
High
Unreviewed
CVE-2021-20049
was published
Dec 24, 2021
IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user...
Moderate
Unreviewed
CVE-2021-39013
was published
Dec 23, 2021
Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability...
Moderate
Unreviewed
CVE-2021-36341
was published
Dec 22, 2021
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37...
Moderate
Unreviewed
CVE-2021-45038
was published
Dec 18, 2021
In geniezone driver, there is a possible out of bounds read due to an incorrect bounds check....
Moderate
Unreviewed
CVE-2021-0676
was published
Dec 18, 2021
pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak.
Moderate
Unreviewed
CVE-2021-45095
was published
Dec 17, 2021
In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible way to...
Low
Unreviewed
CVE-2021-0983
was published
Dec 16, 2021
In onCreate of RequestIgnoreBatteryOptimizations.java, there is a possible way to determine...
Moderate
Unreviewed
CVE-2021-1023
was published
Dec 16, 2021
The Onion module in toxcore before 0.2.2 doesn't restrict which packets can be onion-routed,...
Moderate
Unreviewed
CVE-2018-25022
was published
Dec 14, 2021
The Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.38 does not have any authorisation...
High
Unreviewed
CVE-2021-24945
was published
Dec 14, 2021
An information disclosure vulnerability in GitLab CE/EE versions 12.0 to 14.3.6, 14.4 to 14.4.4,...
Moderate
Unreviewed
CVE-2021-39941
was published
Dec 14, 2021
IBM Spectrum Protect Operations Center 7.1, under special configurations, could allow a local...
Moderate
Unreviewed
CVE-2021-38901
was published
Dec 14, 2021
An information disclosure vulnerability in the login page of Huntflow Enterprise before 3.10.4...
High
Unreviewed
CVE-2021-37935
was published
Dec 11, 2021
A exposure of sensitive information to an unauthorized actor in Fortinet FortiAuthenticator...
Moderate
Unreviewed
CVE-2021-43067
was published
Dec 9, 2021
An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local...
Low
Unreviewed
CVE-2021-25519
was published
Dec 9, 2021
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei...
High
Unreviewed
CVE-2021-37067
was published
Dec 8, 2021
An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials...
High
Unreviewed
CVE-2021-43963
was published
Dec 8, 2021
Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters....
Moderate
Unreviewed
CVE-2020-27414
was published
Dec 3, 2021
ProTip!
Advisories are also available from the
GraphQL API