Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,956
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,969
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

220,676 advisories

OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow via the component ... Moderate Unreviewed
CVE-2021-29323 was published Nov 20, 2021
OpenSource Moddable v10.5.0 was discovered to contain buffer over-read in the fxDebugThrow... High Unreviewed
CVE-2021-29328 was published Nov 20, 2021
The Easy Registration Forms WordPress plugin is vulnerable to Cross-Site Request Forgery due to... High Unreviewed
CVE-2021-39353 was published Nov 20, 2021
The Preview E-Mails for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2021-42363 was published Nov 20, 2021
Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when... Low Unreviewed
CVE-2021-36003 was published Nov 20, 2021
vim is vulnerable to Heap-based Buffer Overflow High Unreviewed
CVE-2021-3973 was published Nov 20, 2021
The "WPO365 | LOGIN" WordPress plugin (up to and including version 15.3) by wpo365.com is... Moderate Unreviewed
CVE-2021-43409 was published Nov 20, 2021
An HTTP request smuggling in web application in ASUS ROG Rapture GT-AX11000, RT-AX3000, RT-AX55,... High Unreviewed
CVE-2021-41436 was published Nov 20, 2021
A brute-force protection bypass in CAPTCHA protection in ASUS ROG Rapture GT-AX11000, RT-AX3000,... Critical Unreviewed
CVE-2021-41435 was published Nov 20, 2021
Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP... Critical Unreviewed
CVE-2021-37592 was published Nov 20, 2021
vim is vulnerable to Use After Free High Unreviewed
CVE-2021-3974 was published Nov 20, 2021
A vulnerability in the web-based management interface of Cisco Common Services Platform Collector... Moderate Unreviewed
CVE-2021-40131 was published Nov 20, 2021
A vulnerability in the web application of Cisco Common Services Platform Collector (CSPC) could... Moderate Unreviewed
CVE-2021-40130 was published Nov 20, 2021
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may... High Unreviewed
CVE-2021-1125 was published Nov 21, 2021
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled... Moderate Unreviewed
CVE-2021-36310 was published Nov 21, 2021
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure... Low Unreviewed
CVE-2021-36319 was published Nov 21, 2021
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege... High Unreviewed
CVE-2021-36307 was published Nov 21, 2021
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may... Moderate Unreviewed
CVE-2021-1105 was published Nov 21, 2021
Dell EMC SCG 5.00.00.10 and earlier, contain a sensitive information disclosure vulnerability. A... Moderate Unreviewed
CVE-2021-36340 was published Nov 21, 2021
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an authentication bypass... Critical Unreviewed
CVE-2021-36320 was published Nov 21, 2021
We have already fixed this vulnerability in the following versions of QmailAgent: QmailAgent 3.0... High Unreviewed
CVE-2021-34358 was published Nov 21, 2021
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection... Moderate Unreviewed
CVE-2021-36322 was published Nov 21, 2021
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address... High Unreviewed
CVE-2021-28710 was published Nov 22, 2021
A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked condition, a... Critical Unreviewed
CVE-2021-44143 was published Nov 23, 2021
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header... Moderate Unreviewed
CVE-2021-32004 was published Nov 23, 2021
ProTip! Advisories are also available from the GraphQL API