GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
256,621 advisories
Filter by severity
D-Link device DIR_882 DIR_882_FW1.30B06_Hotfix_02 was discovered to contain a command injection...
Critical
Unreviewed
CVE-2021-44881
was published
Feb 8, 2022
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function...
High
Unreviewed
CVE-2022-24143
was published
Feb 8, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the component outcomes_addProcess.php of...
Moderate
Unreviewed
CVE-2022-23871
was published
Feb 8, 2022
Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu...
Critical
Unreviewed
CVE-2021-44247
was published
Feb 8, 2022
mozilo2.0 was discovered to be vulnerable to directory traversal attacks via the parameter...
Critical
Unreviewed
CVE-2022-23357
was published
Feb 8, 2022
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which...
Moderate
Unreviewed
CVE-2021-42633
was published
Feb 8, 2022
Use After Free in Conda vim prior to 8.2.
Critical
Unreviewed
CVE-2022-0443
was published
Feb 8, 2022
NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can...
Critical
Unreviewed
CVE-2022-21817
was published
Feb 8, 2022
Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2...
High
Unreviewed
CVE-2021-36193
was published
Feb 8, 2022
An authenticated and authorized agent user could potentially gain administrative access via an...
High
Unreviewed
CVE-2022-0366
was published
Feb 8, 2022
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,...
Critical
Unreviewed
CVE-2021-24043
was published
Feb 8, 2022
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ...
High
Unreviewed
CVE-2021-42753
was published
Feb 8, 2022
An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and...
Moderate
Unreviewed
CVE-2021-36177
was published
Feb 8, 2022
A improper neutralization of special elements used in a command ('command injection') in Fortinet...
High
Unreviewed
CVE-2021-41016
was published
Feb 8, 2022
A improper neutralization of special elements used in an os command ('os command injection') in...
High
Unreviewed
CVE-2021-43073
was published
Feb 8, 2022
A improper neutralization of input during web page generation ('cross-site scripting') in...
Moderate
Unreviewed
CVE-2021-43062
was published
Feb 8, 2022
The check_privacy_settings AJAX action of the WordPress GDPR WordPress plugin before 1.9.26,...
Critical
Unreviewed
CVE-2021-24814
was published
Feb 8, 2022
UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0...
Moderate
Unreviewed
CVE-2021-44746
was published
Feb 8, 2022
Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in ...
Critical
Unreviewed
CVE-2022-24263
was published
Feb 8, 2022
In ASQ in Stormshield Network Security (SNS) 1.0.0 through 2.7.8, 2.8.0 through 2.16.0, 3.0.0...
Critical
Unreviewed
CVE-2021-31617
was published
Feb 8, 2022
This affects the package juce-framework/JUCE before 6.1.5. This vulnerability is triggered when a...
High
Unreviewed
CVE-2021-23521
was published
Feb 8, 2022
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early...
Critical
Unreviewed
CVE-2021-45079
was published
Feb 8, 2022
xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer...
Moderate
Unreviewed
CVE-2022-24130
was published
Feb 8, 2022
There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms...
Moderate
Unreviewed
CVE-2021-4160
was published
Feb 8, 2022
controller/org.controller/org.controller.js in the CVE Services API 1.1.1 before...
High
Unreviewed
CVE-2021-46561
was published
Feb 8, 2022
ProTip!
Advisories are also available from the
GraphQL API