Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,879 advisories

Loading
Dell EMC iDRAC6 versions prior to 2.92, iDRAC7/iDRAC8 versions prior to 2.61.60.60, and iDRAC9... Critical Unreviewed
CVE-2019-3705 was published May 24, 2022
Dell EMC iDRAC9 versions prior to 3.24.24.24, 3.21.26.22, 3.22.22.22 and 3.21.25.22 contain an... Critical Unreviewed
CVE-2019-3706 was published May 24, 2022
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent:... Critical Unreviewed
CVE-2019-2725 was published May 24, 2022
Dell EMC iDRAC9 versions prior to 3.30.30.30 contain an authentication bypass vulnerability. A... Critical Unreviewed
CVE-2019-3707 was published May 24, 2022
The type inference system allows the compilation of functions that can cause type confusions... Critical Unreviewed
CVE-2019-9791 was published May 24, 2022
The IonMonkey just-in-time (JIT) compiler can leak an internal JS_OPTIMIZED_OUT magic value to... Critical Unreviewed
CVE-2019-9792 was published May 24, 2022
A vulnerability was discovered where specific command line arguments are not properly discarded... Critical Unreviewed
CVE-2019-9794 was published May 24, 2022
A vulnerability where type-confusion in the IonMonkey just-in-time (JIT) compiler could... Critical Unreviewed
CVE-2019-9795 was published May 24, 2022
In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command... Critical Unreviewed
CVE-2019-9804 was published May 24, 2022
A use-after-free vulnerability can occur when the SMIL animation controller incorrectly registers... Critical Unreviewed
CVE-2019-9796 was published May 24, 2022
A latent vulnerability exists in the Prio library where data may be read from uninitialized... Critical Unreviewed
CVE-2019-9805 was published May 24, 2022
Gitea Allows 1FA Even for 2FA-Enrolled Accounts Critical
CVE-2019-11576 was published for code.gitea.io/gitea (Go) May 24, 2022
Server Side Request Forgery (SSRF) exists in the Print My Blog plugin before 1.6.7 for WordPress... Critical Unreviewed
CVE-2019-11565 was published May 24, 2022
dhcpcd before 7.2.1 contains a buffer overflow in dhcp6_findna in dhcp6.c when reading NA/TA... Critical Unreviewed
CVE-2019-11577 was published May 24, 2022
In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run... Critical Unreviewed
CVE-2019-11595 was published May 24, 2022
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances... Critical Unreviewed
CVE-2019-3563 was published May 24, 2022
Insufficient boundary checks for the strrpos and strripos functions allow access to out-of-bounds... Critical Unreviewed
CVE-2019-3561 was published May 24, 2022
Fujifilm FCR Capsula X/ Carbon X/ FCR XC-2, model versions CR-IR 357 FCR Carbon X, CR-IR 357 FCR... Critical Unreviewed
CVE-2019-10950 was published May 24, 2022
doorGets 7.0 has a sensitive information disclosure vulnerability in /setup/temp/admin.php and ... Critical Unreviewed
CVE-2019-11616 was published May 24, 2022
doorGets 7.0 has a default administrator credential vulnerability. A remote attacker can use this... Critical Unreviewed
CVE-2019-11618 was published May 24, 2022
The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG... Critical Unreviewed
CVE-2019-3929 was published May 24, 2022
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command... Critical Unreviewed
CVE-2019-3926 was published May 24, 2022
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command... Critical Unreviewed
CVE-2019-3925 was published May 24, 2022
The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG... Critical Unreviewed
CVE-2019-3930 was published May 24, 2022
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 anyone can change the... Critical Unreviewed
CVE-2019-3927 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database