Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

241 advisories

Loading
In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay... High Unreviewed
CVE-2021-0954 was published Dec 16, 2021
In onCreate of KeyChainActivity.java, there is a possible way to use an app certificate stored in... High Unreviewed
CVE-2021-0963 was published Dec 16, 2021
In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses... Moderate Unreviewed
CVE-2021-1006 was published Dec 16, 2021
In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB... High Unreviewed
CVE-2021-1016 was published Dec 16, 2021
In UserDetailsActivity of AndroidManifest.xml, there is a possible DoS due to a tapjacking... Moderate Unreviewed
CVE-2021-1038 was published Dec 16, 2021
In NotificationAccessActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking... High Unreviewed
CVE-2021-1039 was published Dec 16, 2021
In onCreate of BluetoothPairingSelectionFragment.java, there is a possible EoP due to a... High Unreviewed
CVE-2021-1040 was published Dec 16, 2021
IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to hijack the... Moderate Unreviewed
CVE-2021-39054 was published Dec 14, 2021
A user interface overlay vulnerability was discovered in F-secure SAFE Browser for Android. When... Moderate Unreviewed
CVE-2021-40834 was published Dec 11, 2021
Through a series of navigations, Firefox could have entered fullscreen mode without notification... Moderate Unreviewed
CVE-2021-38506 was published Dec 9, 2021
By displaying a form validity message in the correct location at the same time as a permission... Moderate Unreviewed
CVE-2021-38508 was published Dec 9, 2021
Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with... Moderate Unreviewed
CVE-2021-38509 was published Dec 9, 2021
It was possible to recreate previous cursor spoofing attacks against users with a zoomed native... Moderate Unreviewed
CVE-2021-43546 was published Dec 9, 2021
Improper Restriction of Rendered UI Layers or Frames in yourls Moderate
CVE-2021-3734 was published for yourls/yourls (Composer) Aug 30, 2021
Improper Restriction of Rendered UI Layers or Frames in Keycloak Moderate
CVE-2020-1728 was published for org.keycloak:keycloak-core (Maven) Apr 15, 2020
Improper Restriction of Rendered UI Layers or Frames in Apache nifif Moderate
CVE-2018-17192 was published for org.apache.nifi:nifi (Maven) Dec 20, 2018
MarkLee131
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database