GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,956
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,969
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
220,676 advisories
Filter by severity
OpenSource Moddable v10.5.0 was discovered to contain a heap buffer overflow via the component ...
Moderate
Unreviewed
CVE-2021-29323
was published
Nov 20, 2021
OpenSource Moddable v10.5.0 was discovered to contain buffer over-read in the fxDebugThrow...
High
Unreviewed
CVE-2021-29328
was published
Nov 20, 2021
The Easy Registration Forms WordPress plugin is vulnerable to Cross-Site Request Forgery due to...
High
Unreviewed
CVE-2021-39353
was published
Nov 20, 2021
The Preview E-Mails for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2021-42363
was published
Nov 20, 2021
Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when...
Low
Unreviewed
CVE-2021-36003
was published
Nov 20, 2021
vim is vulnerable to Heap-based Buffer Overflow
High
Unreviewed
CVE-2021-3973
was published
Nov 20, 2021
The "WPO365 | LOGIN" WordPress plugin (up to and including version 15.3) by wpo365.com is...
Moderate
Unreviewed
CVE-2021-43409
was published
Nov 20, 2021
An HTTP request smuggling in web application in ASUS ROG Rapture GT-AX11000, RT-AX3000, RT-AX55,...
High
Unreviewed
CVE-2021-41436
was published
Nov 20, 2021
A brute-force protection bypass in CAPTCHA protection in ASUS ROG Rapture GT-AX11000, RT-AX3000,...
Critical
Unreviewed
CVE-2021-41435
was published
Nov 20, 2021
Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP...
Critical
Unreviewed
CVE-2021-37592
was published
Nov 20, 2021
A vulnerability in the web-based management interface of Cisco Common Services Platform Collector...
Moderate
Unreviewed
CVE-2021-40131
was published
Nov 20, 2021
A vulnerability in the web application of Cisco Common Services Platform Collector (CSPC) could...
Moderate
Unreviewed
CVE-2021-40130
was published
Nov 20, 2021
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may...
High
Unreviewed
CVE-2021-1125
was published
Nov 21, 2021
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled...
Moderate
Unreviewed
CVE-2021-36310
was published
Nov 21, 2021
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure...
Low
Unreviewed
CVE-2021-36319
was published
Nov 21, 2021
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege...
High
Unreviewed
CVE-2021-36307
was published
Nov 21, 2021
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may...
Moderate
Unreviewed
CVE-2021-1105
was published
Nov 21, 2021
Dell EMC SCG 5.00.00.10 and earlier, contain a sensitive information disclosure vulnerability. A...
Moderate
Unreviewed
CVE-2021-36340
was published
Nov 21, 2021
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an authentication bypass...
Critical
Unreviewed
CVE-2021-36320
was published
Nov 21, 2021
We have already fixed this vulnerability in the following versions of QmailAgent: QmailAgent 3.0...
High
Unreviewed
CVE-2021-34358
was published
Nov 21, 2021
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection...
Moderate
Unreviewed
CVE-2021-36322
was published
Nov 21, 2021
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address...
High
Unreviewed
CVE-2021-28710
was published
Nov 22, 2021
A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked condition, a...
Critical
Unreviewed
CVE-2021-44143
was published
Nov 23, 2021
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header...
Moderate
Unreviewed
CVE-2021-32004
was published
Nov 23, 2021
ProTip!
Advisories are also available from the
GraphQL API