GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
20,472 advisories
Filter by severity
A weak password requirement vulnerability exists in the Create New User function of MintHCM...
Critical
Unreviewed
CVE-2021-25839
was published
May 24, 2022
Use after free in navigation in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who...
Critical
Unreviewed
CVE-2021-21226
was published
May 24, 2022
Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had...
Critical
Unreviewed
CVE-2021-21223
was published
May 24, 2022
Webmin 1.973 is affected by reflected Cross Site Scripting (XSS) to achieve Remote Command...
Critical
Unreviewed
CVE-2021-31761
was published
May 24, 2022
Akuvox C315 115.116.2613 allows remote command Injection via the cfgd_server service. The attack...
Critical
Unreviewed
CVE-2021-31726
was published
May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab...
Critical
Unreviewed
CVE-2021-22205
was published
May 24, 2022
The unofficial vscode-ghc-simple (aka Simple Glasgow Haskell Compiler) extension before 0.2.3 for...
Critical
Unreviewed
CVE-2021-30502
was published
May 24, 2022
Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage...
Critical
Unreviewed
CVE-2021-2320
was published
May 24, 2022
Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage...
Critical
Unreviewed
CVE-2021-2319
was published
May 24, 2022
Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage...
Critical
Unreviewed
CVE-2021-2318
was published
May 24, 2022
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component:...
Critical
Unreviewed
CVE-2021-2177
was published
May 24, 2022
Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage...
Critical
Unreviewed
CVE-2021-2317
was published
May 24, 2022
Vulnerability in the Oracle Advanced Supply Chain Planning product of Oracle Supply Chain ...
Critical
Unreviewed
CVE-2021-2253
was published
May 24, 2022
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component:...
Critical
Unreviewed
CVE-2021-2248
was published
May 24, 2022
Vulnerability in the Oracle Storage Cloud Software Appliance product of Oracle Storage Gateway ...
Critical
Unreviewed
CVE-2021-2256
was published
May 24, 2022
Vulnerability in the Hyperion Analytic Provider Services product of Oracle Hyperion (component:...
Critical
Unreviewed
CVE-2021-2244
was published
May 24, 2022
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component:...
Critical
Unreviewed
CVE-2021-2221
was published
May 24, 2022
Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Marketing...
Critical
Unreviewed
CVE-2021-2205
was published
May 24, 2022
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component:...
Critical
Unreviewed
CVE-2021-2200
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Critical
Unreviewed
CVE-2021-2136
was published
May 24, 2022
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:...
Critical
Unreviewed
CVE-2021-2135
was published
May 24, 2022
Vulnerability in the Oracle Platform Security for Java product of Oracle Fusion Middleware ...
Critical
Unreviewed
CVE-2021-2302
was published
May 24, 2022
Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass...
Critical
Unreviewed
CVE-2021-22893
was published
May 24, 2022
Path Traversal in FeiFeiCMS v4.0 allows remote attackers to delete arbitrary files by sending a...
Critical
Unreviewed
CVE-2020-17564
was published
May 24, 2022
The Business Hours Pro WordPress plugin through 5.5.0 allows a remote attacker to upload...
Critical
Unreviewed
CVE-2021-24240
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API