GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,826
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,090

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,300 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Incorrect security UI in basic auth in Google Chrome on iOS prior to 84.0.4147.89 allowed a... Moderate Unreviewed

CVE-2020-6528 was published May 24, 2022

IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0... Moderate Unreviewed

CVE-2013-0543 was published May 5, 2022

Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software... Moderate Unreviewed

CVE-2021-1305 was published May 24, 2022

The /rest/api/1.0/render resource in Jira Server and Data Center before version 8.5.13, from... Moderate Unreviewed

CVE-2020-36238 was published May 24, 2022

A security misconfiguration exists in Combodo iTop, which can expose sensitive information. Moderate Unreviewed

CVE-2020-12780 was published May 24, 2022

In JetBrains TeamCity before 2020.1, users are able to assign more permissions than they have. Moderate Unreviewed

CVE-2020-15826 was published May 24, 2022

Telegram Desktop through 2.1.13 allows a spoofed file type to bypass the Dangerous File Type... Moderate Unreviewed

CVE-2020-17448 was published May 24, 2022

HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions... Moderate Unreviewed

CVE-2020-9245 was published May 24, 2022

IBM Security Identity Manager Virtual Appliance 7.0.2 does not set the secure attribute on... Moderate Unreviewed

CVE-2019-4704 was published May 24, 2022

Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify... Moderate Unreviewed

CVE-2020-9248 was published May 24, 2022

DBHcms v1.2.0 has an unauthorized operation vulnerability because there's no access control at... Moderate Unreviewed

CVE-2020-19888 was published May 24, 2022

In JetBrains YouTrack versions before 2020.3.4313, 2020.2.11008, 2020.1.11011, 2019.1.65514, 2019... Moderate Unreviewed

CVE-2020-24618 was published May 24, 2022

An Incorrect Access Control vulnerability exists in /ucms/chk.php in UCMS 1.4.8. This results in... Moderate Unreviewed

CVE-2020-24981 was published May 24, 2022

A vulnerability, which was classified as problematic, was found in jvvlee MerlinsBoard. This... Moderate Unreviewed

CVE-2015-10033 was published Jan 9, 2023

Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have... Moderate Unreviewed

CVE-2020-9241 was published May 24, 2022

Zulip Server before 2.1.5 has Incorrect Access Control because... Moderate Unreviewed

CVE-2020-14215 was published May 24, 2022

A vulnerability exsists in IBM Planning Analytics 2.0 whereby avatars in Planning Analytics... Moderate Unreviewed

CVE-2020-4648 was published May 24, 2022

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access... Moderate Unreviewed

CVE-2018-20685 was published May 13, 2022

OX App Suite 7.10.3 and earlier has Incorrect Access Control via an /api/subscriptions request... Moderate Unreviewed

CVE-2020-12643 was published May 24, 2022

The Bluetooth Low Energy Secure Manager Protocol (SMP) implementation in Texas Instruments... Moderate Unreviewed

CVE-2020-13593 was published May 24, 2022

Clustered Data ONTAP versions prior to 9.3P19, 9.5P14, 9.6P9 and 9.7 are susceptible to a... Moderate Unreviewed

CVE-2020-8576 was published May 24, 2022

Banking services from SAP 9.0 (Bank Analyzer), version - 500, and SAP S/4HANA for financial... Moderate Unreviewed

CVE-2020-6311 was published May 24, 2022

A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3477 was published May 24, 2022

The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used... Moderate Unreviewed

CVE-2020-25284 was published May 24, 2022

In PackageManager, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2020-0288 was published May 24, 2022

Previous 1…11…52 Next

Previous 1 2 … 9 10 11 12 13 … 51 52 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,300 advisories