Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,204 advisories

Loading
jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.article.kit... High Unreviewed
CVE-2021-46118 was published Jan 27, 2022
jpress v 4.2.0 is vulnerable to RCE via io.jpress.module.product.ProductNotifyKit#doSendEmail.... High Unreviewed
CVE-2021-46114 was published Jan 27, 2022
On NGINX Controller API Management versions 3.18.0-3.19.0, an authenticated attacker with access... High Unreviewed
CVE-2022-23008 was published Jan 26, 2022
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security... High Unreviewed
CVE-2022-23120 was published Jan 21, 2022
Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution... High Unreviewed
CVE-2022-0130 was published Jan 15, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34994 was published Jan 14, 2022
Microsoft SharePoint Server Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21837 was published Jan 12, 2022
Microsoft Office Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21840 was published Jan 12, 2022
Microsoft Word Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21842 was published Jan 12, 2022
Microsoft Exchange Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE... Critical Unreviewed
CVE-2022-21846 was published Jan 12, 2022
Windows Security Center API Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21874 was published Jan 12, 2022
Windows Geolocation Service Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21878 was published Jan 12, 2022
HEVC Video Extensions Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21917 was published Jan 12, 2022
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique... Moderate Unreviewed
CVE-2022-21928 was published Jan 12, 2022
A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and... High Unreviewed
CVE-2022-22285 was published Jan 11, 2022
A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0... High Unreviewed
CVE-2022-22286 was published Jan 11, 2022
HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may... Critical Unreviewed
CVE-2021-39979 was published Jan 4, 2022
NETGEAR R6400 devices before 1.0.1.70 are affected by server-side injection. Moderate Unreviewed
CVE-2021-45655 was published Dec 27, 2021
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00... High Unreviewed
CVE-2021-45657 was published Dec 27, 2021
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00... High Unreviewed
CVE-2021-45656 was published Dec 27, 2021
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16... High Unreviewed
CVE-2021-45661 was published Dec 27, 2021
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16... High Unreviewed
CVE-2021-45660 was published Dec 27, 2021
Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16... High Unreviewed
CVE-2021-45659 was published Dec 27, 2021
Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-41365 was published Dec 16, 2021
Microsoft SharePoint Server Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-42294 was published Dec 16, 2021
ProTip! Advisories are also available from the GraphQL API