GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,944
Composer 4,781
Erlang 36
GitHub Actions 29
Go 2,345
Maven 5,666
npm 3,976
NuGet 719
pip 3,772
Pub 12
RubyGems 923
Rust 980
Swift 38

Unreviewed advisories

All unreviewed 260,220

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,307 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed

CVE-2021-34865 was published Jan 26, 2022

USBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute... High Unreviewed

CVE-2022-23220 was published Jan 22, 2022

SoftVibe SARABAN for INFOMA 1.1 has Incorrect Access Control vulnerability, that allows attackers... High Unreviewed

CVE-2021-38696 was published Jan 19, 2022

The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue,... High Unreviewed

CVE-2021-25036 was published Jan 18, 2022

A limited authentication bypass vulnerability was discovered that could allow an attacker to... High Unreviewed

CVE-2022-22990 was published Jan 14, 2022

This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed

CVE-2021-34977 was published Jan 14, 2022

Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART... High Unreviewed

CVE-2021-23147 was published Dec 31, 2021

An improper authentication vulnerability has been reported to affect Android App Qfile. If... High Unreviewed

CVE-2021-38688 was published Dec 30, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3... High Unreviewed

CVE-2021-45499 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects R7000P before 1.3.3... High Unreviewed

CVE-2021-45500 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45502 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45503 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45505 was published Dec 27, 2021

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6... High Unreviewed

CVE-2021-45506 was published Dec 27, 2021

NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass. High Unreviewed

CVE-2021-45510 was published Dec 27, 2021

An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett... High Unreviewed

CVE-2021-21902 was published Dec 23, 2021

An authentication bypass vulnerability exists in the process_msg() function of the home_security... High Unreviewed

CVE-2021-21953 was published Dec 23, 2021

Dell PowerScale OneFS, versions 8.2.2-9.3.0.x, contain an authentication bypass by primary... High Unreviewed

CVE-2021-36350 was published Dec 22, 2021

TCMAN GIM is vulnerable to a lack of authorization in all available webservice methods listed in ... High Unreviewed

CVE-2021-40851 was published Dec 18, 2021

Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation,... High Unreviewed

CVE-2021-40826 was published Dec 16, 2021

In stopVpnProfile of Vpn.java, there is a possible VPN profile reset due to a permissions bypass.... High Unreviewed

CVE-2021-0649 was published Dec 16, 2021

Auerswald COMfortel 1400 IP and 2600 IP before 2.8G devices allow Authentication Bypass via the ... High Unreviewed

CVE-2021-40856 was published Dec 14, 2021

A improper authentication in Fortinet FortiAuthenticator version 6.4.0 allows user to bypass the... High Unreviewed

CVE-2021-43068 was published Dec 10, 2021

Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers... High Unreviewed

CVE-2021-20145 was published Dec 10, 2021

An authentication bypass vulnerability exists in the get_aes_key_info_by_packetid() function of... High Unreviewed

CVE-2021-21955 was published Dec 10, 2021

Previous 1 2 … 49 50 51 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,307 advisories