Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

894 advisories

Loading
MyBB Group MyBB contains a Incorrect Access Control vulnerability in Private forums that can... Moderate Unreviewed
CVE-2018-1000503 was published May 13, 2022
Privilege escalation vulnerability in INplc-RT 3.08 and earlier allows an attacker with... Moderate Unreviewed
CVE-2018-0671 was published May 13, 2022
Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass authentication to obtain... Moderate Unreviewed
CVE-2018-0566 was published May 13, 2022
A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not... Moderate Unreviewed
CVE-2018-0010 was published May 13, 2022
An Improper Privilege Management issue was discovered in Fuji Electric Monitouch V-SFT versions... Moderate Unreviewed
CVE-2017-9662 was published May 13, 2022
An error in the "WindowsDllDetourPatcher" where a RWX ("Read/Write/Execute") 4k block is... Moderate Unreviewed
CVE-2017-7782 was published May 13, 2022
The Mozilla Maintenance Service can be invoked by an unprivileged user to overwrite arbitrary... Moderate Unreviewed
CVE-2017-7767 was published May 13, 2022
An issue was discovered in AppArmor before 2.12. Incorrect handling of unknown AppArmor profiles... Moderate Unreviewed
CVE-2017-6507 was published May 13, 2022
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 mismanages... Moderate Unreviewed
CVE-2017-6339 was published May 13, 2022
A local user on F5 BIG-IQ Centralized Management 5.1.0-5.2.0 with the Access Manager role has... Moderate Unreviewed
CVE-2017-6152 was published May 13, 2022
Configuration of SPI Flash in platforms based on multiple Intel platforms allow a local attacker... Moderate Unreviewed
CVE-2017-5703 was published May 13, 2022
An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An... Moderate Unreviewed
CVE-2017-5572 was published May 13, 2022
The Mozilla Windows updater can be called by a non-privileged user to delete an arbitrary local... Moderate Unreviewed
CVE-2017-5409 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB).... Moderate Unreviewed
CVE-2017-3257 was published May 13, 2022
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2017-2094 was published May 13, 2022
In Paessler PRTG Network Monitor 17.3.33.2830, it's possible to create a Map as a read-only user,... Moderate Unreviewed
CVE-2017-15917 was published May 13, 2022
OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains... Moderate Unreviewed
CVE-2017-15014 was published May 13, 2022
IBM UrbanCode Deploy (UCD) 6.1 and 6.2 could allow an authenticated user to edit objects that... Moderate Unreviewed
CVE-2017-1493 was published May 13, 2022
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used,... Moderate Unreviewed
CVE-2017-14124 was published May 13, 2022
In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X... Moderate Unreviewed
CVE-2017-13721 was published May 13, 2022
IBM Sterling File Gateway does not properly restrict user requests based on permission level.... Moderate Unreviewed
CVE-2017-1326 was published May 13, 2022
NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10... Moderate Unreviewed
CVE-2017-12422 was published May 13, 2022
GitLab Community Edition (CE) and Enterprise Edition (EE) before 9.0.11, 9.1.8, 9.2.8 allow an... Moderate Unreviewed
CVE-2017-11438 was published May 13, 2022
Cybozu Office 10.0.0 to 10.6.1 allows authenticated attackers to bypass access restriction to... Moderate Unreviewed
CVE-2017-10857 was published May 13, 2022
Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality... Moderate Unreviewed
CVE-2017-10142 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database