GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,129
Composer 4,331
Erlang 31
GitHub Actions 21
Go 2,093
Maven 5,262
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,199

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,203 advisories

Filter by severity

Sort by

Least recently updated

bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the ... Critical Unreviewed

CVE-2020-20495 was published May 24, 2022

A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the... Critical Unreviewed

CVE-2021-39378 was published May 24, 2022

A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the... Critical Unreviewed

CVE-2021-39377 was published May 24, 2022

A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the... Critical Unreviewed

CVE-2021-39379 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36022 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36029 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36025 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36028 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36024 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36033 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36042 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36034 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36041 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36040 was published May 24, 2022

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are... Critical Unreviewed

CVE-2021-36035 was published May 24, 2022

webctrl.cgi.elf on Christie Digital DWU850-GS V06.46 devices allows attackers to perform any... Critical Unreviewed

CVE-2021-40350 was published May 24, 2022

A remote code execution (RCE) vulnerability in the \Playsong.php component of cscms v4.1 allows... Critical Unreviewed

CVE-2020-22848 was published May 24, 2022

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because... Critical Unreviewed

CVE-2021-36356 was published May 24, 2022

An issue was discovered in Form Tools through 3.0.20. SQL Injection can occur via the... Critical Unreviewed

CVE-2021-38145 was published May 24, 2022

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with... Critical Unreviewed

CVE-2021-34565 was published May 24, 2022

This vulnerability allows attackers to impersonate users and perform arbitrary actions leading to... Critical Unreviewed

CVE-2021-35222 was published May 24, 2022

A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor... Critical Unreviewed

CVE-2021-22943 was published May 24, 2022

MapService.svc in Hexagon GeoMedia WebMap 2020 before Update 2 (aka 16.6.2.66) allows blind SQL... Critical Unreviewed

CVE-2021-37749 was published May 24, 2022

Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart... Critical Unreviewed

CVE-2020-15744 was published May 24, 2022

A conference management system of ZTE is impacted by a command execution vulnerability. Since the... Critical Unreviewed

CVE-2021-21741 was published May 24, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,203 advisories