Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,429 advisories

Loading
Versiant LYNX Customer Service Portal (CSP), version 3.5.2, is vulnerable to stored cross-site... Low Unreviewed
CVE-2020-9055 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects RBR20 before 2.3.5.26, RBS20... Low Unreviewed
CVE-2019-20673 was published May 24, 2022
Certain NETGEAR devices are affected by denial of service. This affects WAC505 before 8.0.6.4 and... Low Unreviewed
CVE-2019-20653 was published May 24, 2022
Certain NETGEAR devices are affected by denial of service. This affects M4300-28G before 12.0.2... Low Unreviewed
CVE-2017-18836 was published May 24, 2022
Certain NETGEAR devices are affected by directory traversal. This affects M4300-28G before 12.0.2... Low Unreviewed
CVE-2017-18824 was published May 24, 2022
Certain NETGEAR devices are affected by incorrect configuration of security settings. This... Low Unreviewed
CVE-2017-18823 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects RBR20 before 2.3.5.26, RBS20... Low Unreviewed
CVE-2019-20665 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50... Low Unreviewed
CVE-2019-20661 was published May 24, 2022
Certain NETGEAR devices are affected by denial of service. This affects M4300-28G before 12.0.2... Low Unreviewed
CVE-2017-18840 was published May 24, 2022
An information disclosure vulnerability exists when the win32k component improperly provides... Low Unreviewed
CVE-2020-0699 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2... Low Unreviewed
CVE-2020-11778 was published May 24, 2022
An information disclosure vulnerability exists when the Windows kernel improperly handles objects... Low Unreviewed
CVE-2020-0821 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2... Low Unreviewed
CVE-2020-11769 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15,... Low Unreviewed
CVE-2017-18831 was published May 24, 2022
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0... Low Unreviewed
CVE-2019-20779 was published May 24, 2022
Matrix42 Workspace Management 9.1.2.2765 and below allows stored XSS via unfiltered description... Low Unreviewed
CVE-2019-19500 was published May 24, 2022
A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface... Low Unreviewed
CVE-2020-8324 was published May 24, 2022
Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. The FolderName... Low Unreviewed
CVE-2020-9461 was published May 24, 2022
The Search parameter of the Software Catalogue section of Matrix42 Workspace Management 9.1.2... Low Unreviewed
CVE-2019-19390 was published May 24, 2022
ClearPass is vulnerable to Stored Cross Site Scripting by allowing a malicious administrator, or... Low Unreviewed
CVE-2020-7110 was published May 24, 2022
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows... Low Unreviewed
CVE-2019-4749 was published May 24, 2022
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component... Low Unreviewed
CVE-2020-0987 was published May 24, 2022
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component... Low Unreviewed
CVE-2020-0982 was published May 24, 2022
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 (MTK... Low Unreviewed
CVE-2019-20784 was published May 24, 2022
Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB... Low Unreviewed
CVE-2020-11723 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database