GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,537
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,153
Maven 5,330
npm 3,818
NuGet 693
pip 3,492
Pub 12
RubyGems 902
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 246,993

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

117 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local... Moderate Unreviewed

CVE-2021-1434 was published May 24, 2022

It has been discovered in redhat-certification that any unauthorized user may download any file... Moderate Unreviewed

CVE-2019-3897 was published May 24, 2022

Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows... Moderate Unreviewed

CVE-2020-27368 was published May 24, 2022

Improper authorization of the Screen Lock feature in WhatsApp and WhatsApp Business for iOS prior... Moderate Unreviewed

CVE-2020-1908 was published May 24, 2022

Dell EMC NetWorker versions prior to 19.3.0.2 contain an incorrect privilege assignment... Moderate Unreviewed

CVE-2020-26182 was published May 24, 2022

Dell EMC NetWorker versions prior to 19.3.0.2 contain an improper authorization vulnerability.... Moderate Unreviewed

CVE-2020-26183 was published May 24, 2022

A local file inclusion vulnerability in B&R SiteManager versions <9.2.620236042 allows... Moderate Unreviewed

CVE-2020-11641 was published May 24, 2022

The local file inclusion vulnerability present in B&R SiteManager versions <9.2.620236042 allows... Moderate Unreviewed

CVE-2020-11642 was published May 24, 2022

The fetch function in OAuth/Curl.php in Dropbox-PHP, as used in ownCloud Server before 6.0.8, 7.x... Moderate Unreviewed

CVE-2015-4715 was published May 24, 2022

A vulnerability has been identified in OZW672 (All versions < V10.00), OZW772 (All versions < V10... Moderate Unreviewed

CVE-2019-13941 was published May 24, 2022

The WP Database Backup plugin through 5.5 for WordPress stores downloads by default locally in... Moderate Unreviewed

CVE-2020-7241 was published May 24, 2022

An issue was discovered in Zoho ManageEngine DataSecurity Plus before 5.0.1 5012. An exposed... Moderate Unreviewed

CVE-2019-17112 was published May 24, 2022

A binary planting in SAP SQL Anywhere, before version 17.0, SAP IQ, before version 16.1, and SAP... Moderate Unreviewed

CVE-2019-0381 was published May 24, 2022

vBulletin through 5.5.4 mishandles external URLs within the /core/vb/vurl.php file and the /core... Moderate Unreviewed

CVE-2019-17130 was published May 24, 2022

Inteno EG200 EG200-WU7P1U_ADAMO3.16.4-190226_1650 routers have a JUCI ACL misconfiguration that... Moderate Unreviewed

CVE-2019-13140 was published May 24, 2022

cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form... Moderate Unreviewed

CVE-2016-10829 was published May 24, 2022

cmseasy V7.7.5_20211012 is affected by an arbitrary file read vulnerability. After login, the... Moderate Unreviewed

CVE-2021-42644 was published May 18, 2022

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers... Moderate Unreviewed

CVE-2016-3715 was published May 14, 2022

An issue was discovered in certain Apple products. iTunes before 12.7 is affected. The issue... Moderate Unreviewed

CVE-2017-7079 was published May 13, 2022

A vulnerability in Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS... Moderate Unreviewed

CVE-2017-6774 was published May 13, 2022

IBM Daeja ViewONE Professional, Standard & Virtual 4.1.5.1 and 5.0 could allow an authenticated... Moderate Unreviewed

CVE-2017-1308 was published May 13, 2022

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update... Moderate Unreviewed

CVE-2017-11829 was published May 13, 2022

IBM RSA DM (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an... Moderate Unreviewed

CVE-2017-1602 was published May 13, 2022

The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr... Moderate Unreviewed

CVE-2015-1350 was published May 13, 2022

An accessibility flaw was found in the OpenStack Workflow (mistral) service where a service log... Moderate Unreviewed

CVE-2017-2622 was published May 13, 2022

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117 advisories