GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,282

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,940 advisories

Filter by severity

Sort by

Least recently updated

Insufficient policy enforcement in background fetch in Google Chrome prior to 96.0.4664.45... High Unreviewed

CVE-2021-38016 was published Dec 24, 2021

Insufficient policy enforcement in CORS in Google Chrome prior to 96.0.4664.45 allowed a remote... Moderate Unreviewed

CVE-2021-38019 was published Dec 24, 2021

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664... Moderate Unreviewed

CVE-2021-38020 was published Dec 24, 2021

NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does... High Unreviewed

CVE-2021-23175 was published Dec 24, 2021

Stormshield Endpoint Security 2.x before 2.1.2 has Incorrect Access Control. Moderate Unreviewed

CVE-2021-45089 was published Dec 22, 2021

Stormshield Endpoint Security from 2.1.0 to 2.1.1 has Incorrect Access Control. Moderate Unreviewed

CVE-2021-45091 was published Dec 22, 2021

Dalmark Systems Systeam 2.22.8 build 1724 is vulnerable to Incorrect Access Control. The Systeam... High Unreviewed

CVE-2021-44877 was published Dec 22, 2021

IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0... Moderate Unreviewed

CVE-2021-38900 was published Dec 22, 2021

It has been reported that any Orion user, e.g. guest accounts can query the Orion.UserSettings... Moderate Unreviewed

CVE-2021-35248 was published Dec 21, 2021

An issue was discovered in HTCondor 9.0.x before 9.0.4 and 9.1.x before 9.1.2. When... High Unreviewed

CVE-2021-45102 was published Dec 17, 2021

In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine... Low Unreviewed

CVE-2021-1034 was published Dec 16, 2021

The Spotfire Server component of TIBCO Software Inc.'s TIBCO Spotfire Server, TIBCO Spotfire... High Unreviewed

CVE-2021-43051 was published Dec 15, 2021

The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation... Moderate Unreviewed

CVE-2021-24819 was published Dec 14, 2021

The Temporary Login Without Password WordPress plugin before 1.7.1 does not have authorisation... Moderate Unreviewed

CVE-2021-24836 was published Dec 14, 2021

The Get Custom Field Values WordPress plugin before 4.0 allows users with a role as low as... Moderate Unreviewed

CVE-2021-24872 was published Dec 14, 2021

A Hidden Functionality in Fortinet FortiOS 7.x before 7.0.1, FortiOS 6.4.x before 6.4.7 allows... Moderate Unreviewed

CVE-2021-36169 was published Dec 14, 2021

Incorrect Authorization in GitLab EE affecting all versions starting from 11.1 before 14.3.6, all... Moderate Unreviewed

CVE-2021-39918 was published Dec 14, 2021

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, between 14.4.0 and 14.4.4,... Moderate Unreviewed

CVE-2021-39930 was published Dec 14, 2021

Improper access control allows any project member to retrieve the service desk email address in... Moderate Unreviewed

CVE-2021-39934 was published Dec 14, 2021

Improper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6,... Moderate Unreviewed

CVE-2021-39936 was published Dec 14, 2021

Improper access control in the GitLab CE/EE API affecting all versions starting from 9.4 before... Moderate Unreviewed

CVE-2021-39945 was published Dec 14, 2021

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to access the... Critical Unreviewed

CVE-2021-39052 was published Dec 14, 2021

HashiCorp Consul Enterprise before 1.8.17, 1.9.x before 1.9.11, and 1.10.x before 1.10.4 has... High Unreviewed

CVE-2021-41805 was published Dec 13, 2021

An improper authorization vulnerabiltiy [CWE-285] in FortiClient Windows versions 7.0.0 and 6.4.6... Moderate Unreviewed

CVE-2021-36167 was published Dec 10, 2021

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5... High Unreviewed

CVE-2021-29678 was published Dec 10, 2021

Previous 1 2 … 74 75 76 77 78 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,940 advisories