GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,432 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer,... Low Unreviewed

CVE-2020-9524 was published May 24, 2022

Insufficient output sanitization in TCExam 14.2.2 allows a remote, authenticated attacker to... Low Unreviewed

CVE-2020-5747 was published May 24, 2022

Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in... Low Unreviewed

CVE-2015-7946 was published May 24, 2022

In TechSmith SnagIt before 20.1.1, an XML External Entity (XXE) injection issue exists that would... Low Unreviewed

CVE-2020-11541 was published May 24, 2022

IBM MQ 9.1.4 could allow a local attacker to obtain sensitive information by inclusion of... Low Unreviewed

CVE-2020-4338 was published May 24, 2022

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.47, EX6100v2... Low Unreviewed

CVE-2019-20749 was published May 24, 2022

Certain NETGEAR devices are affected by incorrect configuration of security settings. This... Low Unreviewed

CVE-2019-20729 was published May 24, 2022

Insufficient output sanitization in TCExam 14.2.2 allows a remote, authenticated attacker to... Low Unreviewed

CVE-2020-5746 was published May 24, 2022

Multiple Cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to... Low Unreviewed

CVE-2020-12706 was published May 24, 2022

Authentication bypass using an alternate path or channel in SimpliSafe SS3 firmware 1.4 allows a... Low Unreviewed

CVE-2020-5727 was published May 24, 2022

A Stored XSS vulnerability has been found in the administration page of the WTI Like Post plugin... Low Unreviewed

CVE-2020-8799 was published May 24, 2022

A pivot_root race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x... Low Unreviewed

CVE-2020-12114 was published May 24, 2022

SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information... Low Unreviewed

CVE-2019-12864 was published May 24, 2022

include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name. Low Unreviewed

CVE-2020-12629 was published May 24, 2022

A vulnerability in Cisco Aironet Series Access Points Software could allow an unauthenticated,... Low Unreviewed

CVE-2020-3260 was published May 24, 2022

Privilege escalation vulnerability in the administrative user interface in McAfee Endpoint... Low Unreviewed

CVE-2020-7255 was published May 24, 2022

In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before... Low Unreviewed

CVE-2020-7453 was published May 24, 2022

Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp... Low Unreviewed

CVE-2019-10483 was published May 24, 2022

Out of bound access in diag services when DCI command buffer reallocation is not done properly... Low Unreviewed

CVE-2019-10625 was published May 24, 2022

Possible integer overflow can happen in host driver while processing user controlled string due... Low Unreviewed

CVE-2019-10623 was published May 24, 2022

An XSS vulnerability exists in the banners.php page of PHP-Fusion 9.03.50. This can be exploited... Low Unreviewed

CVE-2020-12438 was published May 24, 2022

Accessing functionality not properly constrained by ACLs vulnerability in the autorun start-up... Low Unreviewed

CVE-2020-7273 was published May 24, 2022

In mnld, an incorrect configuration in driver_cfg of mnld for meta factory mode.Product:... Low Unreviewed

CVE-2020-0091 was published May 24, 2022

In onTransact of IHDCP.cpp, there is a possible out of bounds read due to incorrect error... Low Unreviewed

CVE-2020-0100 was published May 24, 2022

Information disclosure issue occurs as there is no binding between the secure keypad session and... Low Unreviewed

CVE-2019-10608 was published May 24, 2022

Previous 1…387…400 Next

Previous 1 2 … 385 386 387 388 389 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,432 advisories