Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,714 advisories

Loading
D-Link device DIR_882 DIR_882_FW1.30B06_Hotfix_02 was discovered to contain a command injection... Critical Unreviewed
CVE-2021-44881 was published Feb 8, 2022
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function... High Unreviewed
CVE-2022-24145 was published Feb 8, 2022
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2022-24144 was published Feb 8, 2022
Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu... Critical Unreviewed
CVE-2021-44247 was published Feb 8, 2022
mozilo2.0 was discovered to be vulnerable to directory traversal attacks via the parameter... Critical Unreviewed
CVE-2022-23357 was published Feb 8, 2022
Use After Free in Conda vim prior to 8.2. Critical Unreviewed
CVE-2022-0443 was published Feb 8, 2022
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which... Moderate Unreviewed
CVE-2021-42633 was published Feb 8, 2022
NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can... Critical Unreviewed
CVE-2022-21817 was published Feb 8, 2022
An authenticated and authorized agent user could potentially gain administrative access via an... High Unreviewed
CVE-2022-0366 was published Feb 8, 2022
Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2... High Unreviewed
CVE-2021-36193 was published Feb 8, 2022
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,... Critical Unreviewed
CVE-2021-24043 was published Feb 8, 2022
A improper neutralization of special elements used in a command ('command injection') in Fortinet... High Unreviewed
CVE-2021-41016 was published Feb 8, 2022
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ... High Unreviewed
CVE-2021-42753 was published Feb 8, 2022
A improper neutralization of input during web page generation ('cross-site scripting') in... Moderate Unreviewed
CVE-2021-43062 was published Feb 8, 2022
A improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed
CVE-2021-43073 was published Feb 8, 2022
An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and... Moderate Unreviewed
CVE-2021-36177 was published Feb 8, 2022
The check_privacy_settings AJAX action of the WordPress GDPR WordPress plugin before 1.9.26,... Critical Unreviewed
CVE-2021-24814 was published Feb 8, 2022
UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0... Moderate Unreviewed
CVE-2021-44746 was published Feb 8, 2022
Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in ... Critical Unreviewed
CVE-2022-24263 was published Feb 8, 2022
This affects the package juce-framework/JUCE before 6.1.5. This vulnerability is triggered when a... High Unreviewed
CVE-2021-23521 was published Feb 8, 2022
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early... Critical Unreviewed
CVE-2021-45079 was published Feb 8, 2022
xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer... Moderate Unreviewed
CVE-2022-24130 was published Feb 8, 2022
In ASQ in Stormshield Network Security (SNS) 1.0.0 through 2.7.8, 2.8.0 through 2.16.0, 3.0.0... Critical Unreviewed
CVE-2021-31617 was published Feb 8, 2022
There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms... Moderate Unreviewed
CVE-2021-4160 was published Feb 8, 2022
In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish Cache 6.0 LTS before 6.0.10, and and... Critical Unreviewed
CVE-2022-23959 was published Feb 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database