GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
218 advisories
Filter by severity
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,...
Critical
Unreviewed
CVE-2017-5142
was published
May 13, 2022
EMC Mainframe Enablers ResourcePak Base versions 7.6.0, 8.0.0, and 8.1.0 contains a fix for a...
Critical
Unreviewed
CVE-2017-4982
was published
May 13, 2022
An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read...
Critical
Unreviewed
CVE-2017-14349
was published
May 13, 2022
Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is...
Critical
Unreviewed
CVE-2017-12635
was published
May 13, 2022
ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check...
Critical
Unreviewed
CVE-2017-1000003
was published
May 13, 2022
A vulnerability has been identified in Siemens 7KT PAC1200 data manager (7KT1260) in all versions...
Critical
Unreviewed
CVE-2017-9944
was published
May 13, 2022
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall...
Critical
Unreviewed
CVE-2018-0425
was published
May 13, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version,...
Critical
Unreviewed
CVE-2018-19725
was published
May 13, 2022
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated...
Critical
Unreviewed
CVE-2018-10143
was published
May 13, 2022
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId...
Critical
Unreviewed
CVE-2017-7312
was published
May 13, 2022
Privilege escalation in Replibit Backup Manager earlier than version 2017.08.04 allows attackers...
Critical
Unreviewed
CVE-2017-13707
was published
May 13, 2022
The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4,...
Critical
Unreviewed
CVE-2014-1510
was published
May 13, 2022
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey...
Critical
Unreviewed
CVE-2014-1511
was published
May 13, 2022
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows...
Critical
Unreviewed
CVE-2018-9022
was published
May 13, 2022
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows...
Critical
Unreviewed
CVE-2018-9021
was published
May 13, 2022
systemd v233 and earlier fails to safely parse usernames starting with a numeric digit (e.g. ...
Critical
Unreviewed
CVE-2017-1000082
was published
May 13, 2022
linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code.
Critical
Unreviewed
CVE-2006-4243
was published
Apr 21, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in ISS BlackICE PC Protection and...
Critical
Unreviewed
CVE-2003-5001
was published
Mar 29, 2022
The System Diagnosis service of MyASUS before 3.1.2.0 allows privilege escalation.
Critical
Unreviewed
CVE-2022-22814
was published
Mar 11, 2022
The MasterStudy LMS WordPress plugin before 2.7.6 does to validate some parameters given when...
Critical
Unreviewed
CVE-2022-0441
was published
Mar 8, 2022
Printix Secure Cloud Print Management 1.3.1035.0 incorrectly uses Privileged APIs.
Critical
Unreviewed
CVE-2022-25089
was published
Mar 4, 2022
Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to a sensitive data leak that...
Critical
Unreviewed
CVE-2022-24305
was published
Mar 3, 2022
PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could...
Critical
Unreviewed
CVE-2021-40046
was published
Feb 26, 2022
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when...
Critical
Unreviewed
CVE-2022-25643
was published
Feb 25, 2022
XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases contain a vulnerability due to...
Critical
Unreviewed
CVE-2022-23992
was published
Feb 15, 2022
ProTip!
Advisories are also available from the
GraphQL API