Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

648 advisories

Loading
There is a deserialization vulnerability in Huawei AnyOffice V200R006C10. An attacker can... High Unreviewed
CVE-2021-22439 was published May 24, 2022
A remote insecure deserialization vulnerability was discovered in Aruba ClearPass Policy Manager... High Unreviewed
CVE-2021-29150 was published May 24, 2022
Deserialization of Untrusted Data in Apache Brooklyn High
CVE-2016-8744 was published for org.apache.brooklyn:brooklyn (Maven) May 17, 2022
Apache NiFi JMS Deserialization issue High
CVE-2018-1310 was published for org.apache.nifi:nifi (Maven) May 14, 2022
A CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause code execution... High Unreviewed
CVE-2021-22777 was published May 24, 2022
Concrete5 through 8.5.5 deserializes Untrusted Data. The vulnerable code is located within the... High Unreviewed
CVE-2021-36766 was published May 24, 2022
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching... High Unreviewed
CVE-2020-2555 was published May 24, 2022
Deserialization of Untrusted Data in org.jboss.resteasy:resteasy-yaml-provider High
CVE-2018-1051 was published for org.jboss.resteasy:resteasy-yaml-provider (Maven) May 13, 2022
A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods... High Unreviewed
CVE-2021-21865 was published May 24, 2022
A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation... High Unreviewed
CVE-2021-21866 was published May 24, 2022
A unsafe deserialization vulnerability exists in the ComponentModel ComponentManager... High Unreviewed
CVE-2021-21864 was published May 24, 2022
A unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile()... High Unreviewed
CVE-2021-21863 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-28684 was published Aug 4, 2022
The WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585). High Unreviewed
CVE-2021-38585 was published May 24, 2022
A unsafe deserialization vulnerability exists in the ObjectManager.plugin Project... High Unreviewed
CVE-2021-21868 was published May 24, 2022
A unsafe deserialization vulnerability exists in the ObjectManager.plugin ObjectStream... High Unreviewed
CVE-2021-21867 was published May 24, 2022
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment... High Unreviewed
CVE-2022-36119 was published Aug 26, 2022
An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation... High Unreviewed
CVE-2021-21869 was published May 24, 2022
Deserialization of untrusted data in multiple functions in MIK.starlight 7.9.5.24363 allows... High Unreviewed
CVE-2021-36231 was published May 24, 2022
Insecure deserialization leading to Remote Code Execution was detected in the Orion Platform... High Unreviewed
CVE-2021-35215 was published May 24, 2022
The bt_bb_get_grid AJAX action of the Bold Page Builder WordPress plugin before 3.1.6 passes user... High Unreviewed
CVE-2021-24579 was published May 24, 2022
mrdoc is vulnerable to Deserialization of Untrusted Data High Unreviewed
CVE-2021-32568 was published May 24, 2022
Insecure Deserialization of untrusted data remote code execution vulnerability was discovered in... High Unreviewed
CVE-2021-35216 was published May 24, 2022
Deserialization of Untrusted Data in the Web Console Chart Endpoint can lead to remote code... High Unreviewed
CVE-2021-35218 was published May 24, 2022
Insecure Deseralization of untrusted data remote code execution vulnerability was discovered in... High Unreviewed
CVE-2021-35217 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database