Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

218 advisories

Loading
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed
CVE-2017-5142 was published May 13, 2022
EMC Mainframe Enablers ResourcePak Base versions 7.6.0, 8.0.0, and 8.1.0 contains a fix for a... Critical Unreviewed
CVE-2017-4982 was published May 13, 2022
An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read... Critical Unreviewed
CVE-2017-14349 was published May 13, 2022
Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is... Critical Unreviewed
CVE-2017-12635 was published May 13, 2022
ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check... Critical Unreviewed
CVE-2017-1000003 was published May 13, 2022
A vulnerability has been identified in Siemens 7KT PAC1200 data manager (7KT1260) in all versions... Critical Unreviewed
CVE-2017-9944 was published May 13, 2022
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall... Critical Unreviewed
CVE-2018-0425 was published May 13, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version,... Critical Unreviewed
CVE-2018-19725 was published May 13, 2022
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated... Critical Unreviewed
CVE-2018-10143 was published May 13, 2022
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId... Critical Unreviewed
CVE-2017-7312 was published May 13, 2022
Privilege escalation in Replibit Backup Manager earlier than version 2017.08.04 allows attackers... Critical Unreviewed
CVE-2017-13707 was published May 13, 2022
The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4,... Critical Unreviewed
CVE-2014-1510 was published May 13, 2022
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey... Critical Unreviewed
CVE-2014-1511 was published May 13, 2022
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows... Critical Unreviewed
CVE-2018-9022 was published May 13, 2022
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows... Critical Unreviewed
CVE-2018-9021 was published May 13, 2022
systemd v233 and earlier fails to safely parse usernames starting with a numeric digit (e.g. ... Critical Unreviewed
CVE-2017-1000082 was published May 13, 2022
linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code. Critical Unreviewed
CVE-2006-4243 was published Apr 21, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in ISS BlackICE PC Protection and... Critical Unreviewed
CVE-2003-5001 was published Mar 29, 2022
The System Diagnosis service of MyASUS before 3.1.2.0 allows privilege escalation. Critical Unreviewed
CVE-2022-22814 was published Mar 11, 2022
The MasterStudy LMS WordPress plugin before 2.7.6 does to validate some parameters given when... Critical Unreviewed
CVE-2022-0441 was published Mar 8, 2022
Printix Secure Cloud Print Management 1.3.1035.0 incorrectly uses Privileged APIs. Critical Unreviewed
CVE-2022-25089 was published Mar 4, 2022
Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to a sensitive data leak that... Critical Unreviewed
CVE-2022-24305 was published Mar 3, 2022
PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could... Critical Unreviewed
CVE-2021-40046 was published Feb 26, 2022
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when... Critical Unreviewed
CVE-2022-25643 was published Feb 25, 2022
XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases contain a vulnerability due to... Critical Unreviewed
CVE-2022-23992 was published Feb 15, 2022
ProTip! Advisories are also available from the GraphQL API