GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote...
Moderate
Unreviewed
CVE-2021-21215
was published
May 24, 2022
Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote...
Moderate
Unreviewed
CVE-2021-21216
was published
May 24, 2022
SAP NetWeaver Application Server Java(HTTP Service), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7...
Moderate
Unreviewed
CVE-2021-21492
was published
May 24, 2022
A malicious extension could have opened a popup window lacking an address bar. The title of the...
Moderate
Unreviewed
CVE-2021-23984
was published
May 24, 2022
An issue was discovered in Scytl sVote 2.1. Because the IP address from an X-Forwarded-For header...
Moderate
Unreviewed
CVE-2019-25023
was published
May 24, 2022
OpenAsset Digital Asset Management (DAM) through 12.0.19 does not correctly determine the HTTP...
High
Unreviewed
CVE-2020-28856
was published
May 24, 2022
Incorrect security UI in Page Info in Google Chrome on iOS prior to 88.0.4324.96 allowed a remote...
Moderate
Unreviewed
CVE-2021-21134
was published
May 24, 2022
SOOIL Developments Co Ltd DiabecareRS,AnyDana-i & AnyDana-A, the communication protocol of the...
Moderate
Unreviewed
CVE-2020-27276
was published
May 24, 2022
A DNS rebinding vulnerability in the UPnP MediaServer implementation in Freebox Server before 4.2.3.
Moderate
Unreviewed
CVE-2020-24375
was published
May 24, 2022
Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow...
Moderate
Unreviewed
CVE-2020-7326
was published
May 24, 2022
IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server...
Moderate
Unreviewed
CVE-2020-4864
was published
May 24, 2022
Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client ...
Moderate
Unreviewed
CVE-2020-7327
was published
May 24, 2022
An authentication bypass vulnerability in the Juniper Networks Paragon Active Assurance Control...
High
Unreviewed
CVE-2021-0232
was published
May 24, 2022
A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon...
Critical
Unreviewed
CVE-2018-7842
was published
May 24, 2022
Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a...
Moderate
Unreviewed
CVE-2019-13709
was published
May 24, 2022
An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows...
High
Unreviewed
CVE-2022-0030
was published
Oct 12, 2022
Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 78.0.3904.70...
Moderate
Unreviewed
CVE-2019-13715
was published
May 24, 2022
Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote...
Moderate
Unreviewed
CVE-2019-13701
was published
May 24, 2022
Insufficient policy enforcement in navigation in Google Chrome prior to 78.0.3904.70 allowed a...
Moderate
Unreviewed
CVE-2019-13704
was published
May 24, 2022
Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70...
Moderate
Unreviewed
CVE-2019-13703
was published
May 24, 2022
Inappropriate implementation in navigation in Google Chrome on iOS prior to 78.0.3904.70 allowed...
Moderate
Unreviewed
CVE-2019-13708
was published
May 24, 2022
Multiple Wiesemann&Theis products of the ComServer Series are prone to an authentication bypass...
High
Unreviewed
CVE-2022-4098
was published
Dec 13, 2022
OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass...
Moderate
Unreviewed
CVE-2019-20790
was published
May 24, 2022
An exploitable vulnerability exists in the WiFi management of Circle with Disney. A crafted...
Moderate
Unreviewed
CVE-2017-12096
was published
May 13, 2022
An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x...
Critical
Unreviewed
CVE-2022-2310
was published
Jul 28, 2022
ProTip!
Advisories are also available from the
GraphQL API