Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,298
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

291 advisories

Loading
Multiple session validity check issues in several administration functionalities of Invigo... High Unreviewed
CVE-2020-10581 was published May 24, 2022
This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed
CVE-2020-27872 was published May 24, 2022
Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite... High Unreviewed
CVE-2020-26186 was published May 24, 2022
An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid.... High Unreviewed
CVE-2020-29481 was published May 24, 2022
An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1... High Unreviewed
CVE-2015-9550 was published May 24, 2022
A Denial Of Service vulnerability exists in PcVue from version 8.10 onward, due to the ability... High Unreviewed
CVE-2020-26868 was published May 24, 2022
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product exposes a... High Unreviewed
CVE-2020-16247 was published May 24, 2022
xdlocalstorage does not verify request origin High
CVE-2020-11610 was published for xdlocalstorage (npm) May 24, 2022
The Tecno Camon Android device with a build fingerprint of TECNO/H612/TECNO-ID5a:8.1.0/O11019/F... High Unreviewed
CVE-2019-15349 was published May 24, 2022
In IntelliSpace Perinatal, Versions K and prior, a vulnerability within the IntelliSpace... High Unreviewed
CVE-2019-13546 was published May 24, 2022
cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication (SEC-72). High Unreviewed
CVE-2016-10840 was published May 24, 2022
On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web... High Unreviewed
CVE-2019-13379 was published May 24, 2022
HHVM, when used with FastCGI, would bind by default to all available interfaces. This behavior... High Unreviewed
CVE-2019-3569 was published May 24, 2022
Rancher Privilege Escalation Vulnerability High
CVE-2019-12274 was published for github.com/rancher/rancher (Go) May 24, 2022
Multi Store Inventory Management System v1.0 was discovered to contain an information disclosure... High Unreviewed
CVE-2022-28991 was published May 21, 2022
Missing input masking in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6,... High Unreviewed
CVE-2022-1413 was published May 20, 2022
OpenShift: Install script has temporary file creation vulnerability which can result in arbitrary... High Unreviewed
CVE-2014-0023 was published May 17, 2022
An issue was discovered in Ivanti Workspace Control before 10.3.10.0 and RES One Workspace. A... High Unreviewed
CVE-2018-15591 was published May 13, 2022
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary... High Unreviewed
CVE-2018-10361 was published May 13, 2022
ME906s-158 earlier than ME906S_Installer_13.1805.10.3 versions has a privilege elevation... High Unreviewed
CVE-2017-8185 was published May 13, 2022
tcpdf before 6.2.0 uploads files from the server generating PDF-files to an external FTP. High Unreviewed
CVE-2017-6100 was published May 13, 2022
The Norwegian Air Shuttle (aka norwegian.com) airline kiosk allows physically proximate attackers... High Unreviewed
CVE-2017-5634 was published May 13, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon... High Unreviewed
CVE-2017-18073 was published May 13, 2022
Cacti 1.1.27 allows remote authenticated administrators to conduct Remote Code Execution attacks... High Unreviewed
CVE-2017-16660 was published May 13, 2022
An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of... High Unreviewed
CVE-2017-15592 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database