GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,944
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,055
Maven 5,234
npm 3,739
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,438

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

885 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability is in the 'live_mfg.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6... High Unreviewed

CVE-2021-44260 was published Mar 18, 2022

A vulnerability is in the 'MNU_top.htm' page of the Netgear W104, version WAC104-V1.0.4.13, which... High Unreviewed

CVE-2021-44262 was published Mar 18, 2022

A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13,... Moderate Unreviewed

CVE-2021-44261 was published Mar 18, 2022

Veeam Backup & Replication 10.x and 11.x has Incorrect Access Control (issue 1 of 2). Critical Unreviewed

CVE-2022-26501 was published Mar 18, 2022

Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) may allow an... Critical Unreviewed

CVE-2022-25247 was published Mar 17, 2022

When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows... Critical Unreviewed

CVE-2022-25251 was published Mar 17, 2022

When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows... High Unreviewed

CVE-2022-25250 was published Mar 17, 2022

atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune... High Unreviewed

CVE-2021-33658 was published Mar 12, 2022

The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any... High Unreviewed

CVE-2022-24396 was published Mar 11, 2022

Power Line Communications PLC4TRUCKS J2497 trailer brake controllers implement diagnostic... Critical Unreviewed

CVE-2022-25922 was published Mar 11, 2022

Emerson OpenEnterprise versions through 3.3.4 may allow an attacker to run an arbitrary commands... Critical Unreviewed

CVE-2020-10640 was published Feb 25, 2022

The CMP WordPress plugin before 4.0.19 allows any user, even not logged in, may arbitrarily... Moderate Unreviewed

CVE-2022-0188 was published Feb 15, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause... Critical Unreviewed

CVE-2021-22805 was published Feb 12, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause... Critical Unreviewed

CVE-2021-22823 was published Feb 12, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow... Moderate Unreviewed

CVE-2022-22809 was published Feb 11, 2022

In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios created in groups that have... Moderate Unreviewed

CVE-2022-24111 was published Feb 11, 2022

A denial of service vulnerability exists in the Modbus configuration functionality of Sealevel... High Unreviewed

CVE-2021-21964 was published Feb 10, 2022

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where a... Moderate Unreviewed

CVE-2022-21816 was published Feb 8, 2022

A specially crafted script could cause the DeltaV Distributed Control System Controllers (All... Moderate Unreviewed

CVE-2021-26264 was published Jan 29, 2022

This vulnerability allows network-adjacent attackers to disclose sensitive information on... Moderate Unreviewed

CVE-2021-34870 was published Jan 26, 2022

USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute... High Unreviewed

CVE-2022-23220 was published Jan 22, 2022

Fresenius Kabi Agilia Link + version 3.0 has a default configuration page accessible without... Moderate Unreviewed

CVE-2021-33843 was published Jan 22, 2022

Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2021-35587 was published Jan 20, 2022

The Bosch software tools AccessIPConfig.exe and AmcIpConfig.exe are used to configure certains... High Unreviewed

CVE-2021-23843 was published Jan 20, 2022

NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive,... Critical Unreviewed

CVE-2022-23227 was published Jan 15, 2022

Previous 1 2 … 32 33 34 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

885 advisories