Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+

19 advisories

Loading
A null byte interaction error has been discovered in the code that the telnetd_startup daemon... High Unreviewed
CVE-2022-25219 was published Mar 11, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of... High Unreviewed
CVE-2018-19966 was published May 13, 2022
In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3,... High Unreviewed
CVE-2018-6560 was published May 13, 2022
The Lever PDF Embedder plugin 4.4 for WordPress does not block the distribution of polyglot PDF... High Unreviewed
CVE-2019-19589 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) server code of Cisco IOS Software and Cisco IOS XE... High Unreviewed
CVE-2020-3200 was published May 24, 2022
An improper interpretation conflict of certain data between certain software components within... High Unreviewed
CVE-2021-0207 was published May 24, 2022
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2021-28474 was published May 24, 2022
Firefox incorrectly treated an inline list-item element as a block element, resulting in an out... High Unreviewed
CVE-2021-29988 was published May 24, 2022
A vulnerability in the VXLAN Operation, Administration, and Maintenance (OAM) feature of Cisco NX... High Unreviewed
CVE-2021-1587 was published May 24, 2022
A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could allow an... High Unreviewed
CVE-2021-34699 was published May 24, 2022
Broken Authorization in ZITADEL Actions High
CVE-2022-36051 was published for github.com/zitadel/zitadel (Go) Aug 30, 2022
mezdanak
A vulnerability in the implementation of IPv6 VPN over MPLS (6VPE) with Zone-Based Firewall (ZBFW... High Unreviewed
CVE-2022-20915 was published Oct 11, 2022
HTTP response splitting in CGI High
CVE-2021-33621 was published for cgi (RubyGems) Nov 19, 2022
meineerde
Apache Shiro Interpretation Conflict vulnerability High
CVE-2023-22602 was published for org.apache.shiro:shiro-root (Maven) Jan 14, 2023
There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of... High Unreviewed
CVE-2022-48471 was published Jun 16, 2023
There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of... High Unreviewed
CVE-2022-48473 was published Jun 16, 2023
In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions... High Unreviewed
CVE-2023-32708 was published Jul 6, 2023
A interpretation conflict in Fortinet IPS Engine versions 7.321, 7.166 and 6.158 allows attacker... High Unreviewed
CVE-2023-40718 was published Oct 10, 2023
Name confusion in x509 Subject Alternative Name fields High
CVE-2023-52892 was published for phpseclib/phpseclib (Composer) Jun 28, 2024
ProTip! Advisories are also available from the GraphQL API