GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
122 advisories
Filter by severity
lpar2rrd is a hardcoded system account in XoruX LPAR2RRD and STOR2RRD before 7.30.
Critical
Unreviewed
CVE-2021-42371
was published
May 24, 2022
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to...
Moderate
Unreviewed
CVE-2021-27004
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4803
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4805
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4809
was published
May 24, 2022
A vulnerability involving insecure storage of sensitive information has been reported to affect...
High
Unreviewed
CVE-2021-28813
was published
May 24, 2022
Certain NetModule devices have Insecure Password Handling (cleartext or reversible encryption),...
High
Unreviewed
CVE-2021-39289
was published
May 24, 2022
In multiple functions of libl3oemcrypto.cpp, there is a possible weakness in the existing...
Moderate
Unreviewed
CVE-2021-0639
was published
May 24, 2022
In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584).
Moderate
Unreviewed
CVE-2021-38590
was published
May 24, 2022
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1...
Moderate
Unreviewed
CVE-2021-21816
was published
May 24, 2022
An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special...
Moderate
Unreviewed
CVE-2021-36127
was published
May 24, 2022
Insecure storage of sensitive information has been reported to affect QNAP NAS running...
Moderate
Unreviewed
CVE-2021-28815
was published
May 24, 2022
Citrix Cloud Connector before 6.31.0.62192 suffers from insecure storage of sensitive information...
High
Unreviewed
CVE-2021-22914
was published
May 24, 2022
IBM QRadar Analyst Workflow App 1.0 through 1.18.0 for IBM QRadar SIEM allows web pages to be...
Low
Unreviewed
CVE-2021-20396
was published
May 24, 2022
Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to...
Low
Unreviewed
CVE-2021-25402
was published
May 24, 2022
Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to...
Low
Unreviewed
CVE-2021-25404
was published
May 24, 2022
IBM DataPower Gateway 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.14 stores...
Moderate
Unreviewed
CVE-2020-5008
was published
May 24, 2022
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by...
Low
Unreviewed
CVE-2021-20575
was published
May 24, 2022
Incorrect Access Control in Nagios Fusion 4.1.8 and earlier allows low-privileged authenticated...
Moderate
Unreviewed
CVE-2020-28911
was published
May 24, 2022
IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which...
Low
Unreviewed
CVE-2020-4765
was published
May 24, 2022
IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 allows web pages to be stored locally...
Low
Unreviewed
CVE-2021-20391
was published
May 24, 2022
The iOS and macOS apps before 1.4.1 for the Western Digital G-Technology ArmorLock NVMe SSD store...
Moderate
Unreviewed
CVE-2021-28653
was published
May 24, 2022
The IBM Application Performance Monitoring UI (IBM Cloud APM 8.1.4) allows web pages to be stored...
Low
Unreviewed
CVE-2020-4726
was published
May 24, 2022
An issue was discovered on FiberHome HG6245D devices through RP2613. By default, there are no...
Critical
Unreviewed
CVE-2021-27170
was published
May 24, 2022
In SolarWinds Serv-U before 15.2.2 Hotfix 1, there is a directory containing user profile files ...
High
Unreviewed
CVE-2021-25276
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API