Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

311,448 advisories

Loading
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') High Unreviewed
CVE-2021-23336 was published Feb 8, 2022
Command Injection in theme-core Critical Unreviewed
CVE-2020-28432 was published Feb 15, 2022
Cross-site Scripting in SOS JobScheduler Moderate Unreviewed
CVE-2020-6854 was published Feb 15, 2022
Inadequate Encryption Strength and Algorithm Downgrade in Wildfly Moderate Unreviewed
CVE-2019-14887 was published Feb 15, 2022
Improper Input Validation in SPIP Critical Unreviewed
CVE-2020-28984 was published Feb 15, 2022
Use of a Broken or Risky Cryptographic Algorithm in PostgreSQL High Unreviewed
CVE-2020-25694 was published Feb 15, 2022
SQL Injection High Unreviewed
CVE-2020-25695 was published Feb 15, 2022
Untrusted Search Path in PostgreSQL Moderate Unreviewed
CVE-2020-14350 was published Feb 15, 2022
Uncontrolled Resource Consumption in node High Unreviewed
CVE-2020-8277 was published Apr 14, 2021
Improper Input Validation in yargs-parser Moderate Unreviewed
GHSA-ghmj-crg5-xw2j was published Feb 15, 2022
Regular expression denial of service in Rapid7 Metasploit High Unreviewed
CVE-2019-5645 was published May 5, 2021
Cross-Site Request Forgery in mm_forum Moderate Unreviewed
CVE-2020-15516 was published Feb 15, 2022
Incorrect Calculation and Use of Insufficiently Random Values in Python Moderate Unreviewed
CVE-2020-14422 was published May 11, 2021
Sensitive Data Exposure in Openshift Container Platform Moderate Unreviewed
CVE-2019-10213 was published May 17, 2021
Missing Authorization in Eclipse Che Moderate Unreviewed
CVE-2020-10689 was published Feb 15, 2022
Cross-site Scripting in express-cart Moderate Unreviewed
CVE-2021-32573 was published Feb 15, 2022
MinIO Admin API security issue High Unreviewed
CVE-2020-11012 was published May 24, 2021
vadmeste Credited to vadmeste and aead aead aead
Information Disclosure in OpenShift Container Platform Moderate Unreviewed
CVE-2020-10712 was published May 25, 2021
Cross-site scripting in Zimbra Moderate Unreviewed
CVE-2020-11737 was published May 25, 2021
Generation of Error Message Containing Sensitive Information in postgresql Moderate Unreviewed
CVE-2021-3393 was published Feb 15, 2022
Incorrect Authorization in PostgreSQL Moderate Unreviewed
CVE-2021-20229 was published Feb 15, 2022
Out-of-bounds Read and Missing Release of Memory after Effective Lifetime in tar Moderate Unreviewed
CVE-2021-20193 was published May 27, 2021
Unvalidated redirects Moderate Unreviewed
CVE-2021-35206 was published Jun 23, 2021
Out-of-Bounds Read in Node.js High Unreviewed
CVE-2021-22918 was published Jul 13, 2021
ProTip! Advisories are also available from the GraphQL API