GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,826
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,134

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

26,867 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

NUUO Network Video Recorder Firmware 1.7.x through 3.3.x allows unauthenticated attackers to... Critical Unreviewed

CVE-2019-9653 was published May 24, 2022

In Godot through 3.1, remote code execution is possible due to the deserialization policy not... Critical Unreviewed

CVE-2019-10069 was published May 24, 2022

SQL Injection in Advanced InfoData Systems (AIS) ESEL-Server 67 (which is the backend for the AIS... Critical Unreviewed

CVE-2019-10123 was published May 24, 2022

The rpWLANRedirect.asp ASP page is accessible without authentication on ZyXEL P-660HN-T1 V2 (2.00... Critical Unreviewed

CVE-2019-6725 was published May 24, 2022

A stack buffer overflow exists in one of the Orpak SiteOmat CGI components, allowing for remote... Critical Unreviewed

CVE-2017-14854 was published May 24, 2022

Incorrect access control was discovered in the stdonato Dashboard plugin through 0.9.7 for GLPI,... Critical Unreviewed

CVE-2019-12530 was published May 24, 2022

An authentication bypass was found in an unknown area of the SiteOmat source code. All SiteOmat... Critical Unreviewed

CVE-2017-14728 was published May 24, 2022

The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017... Critical Unreviewed

CVE-2017-14853 was published May 24, 2022

A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The... Critical Unreviewed

CVE-2017-14851 was published May 24, 2022

An insecure communication was found between a user and the Orpak SiteOmat management console for... Critical Unreviewed

CVE-2017-14852 was published May 24, 2022

The WP Live Chat Support Pro plugin through 8.0.26 for WordPress contains an arbitrary file... Critical Unreviewed

CVE-2019-11185 was published May 24, 2022

The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows... Critical Unreviewed

CVE-2019-11356 was published May 24, 2022

Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow... Critical Unreviewed

CVE-2019-10883 was published May 24, 2022

An issue was discovered in AUO Solar Data Recorder before 1.3.0. The web portal uses HTTP Basic... Critical Unreviewed

CVE-2019-11367 was published May 24, 2022

Improper access control and open directories in Ivanti LANDESK Management Suite (LDMS, aka... Critical Unreviewed

CVE-2019-12373 was published May 24, 2022

ExaGrid appliances with firmware version v4.8.1.1044.P50 have a /monitor/data/Upgrade/ directory... Critical Unreviewed

CVE-2019-12310 was published May 24, 2022

A vulnerable upl/async_upload.asp web API endpoint in Ivanti LANDESK Management Suite (LDMS, aka... Critical Unreviewed

CVE-2019-12377 was published May 24, 2022

Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an... Critical Unreviewed

CVE-2019-12585 was published May 24, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed

CVE-2019-6742 was published May 24, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed

CVE-2019-6741 was published May 24, 2022

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)... Critical Unreviewed

CVE-2018-7124 was published May 24, 2022

An Incorrect Access Control vulnerability has been identified in Citrix XenMobile Server 10.8.0... Critical Unreviewed

CVE-2018-18571 was published May 24, 2022

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)... Critical Unreviewed

CVE-2018-7121 was published May 24, 2022

A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient... Critical Unreviewed

CVE-2019-10149 was published May 24, 2022

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)... Critical Unreviewed

CVE-2019-11945 was published May 24, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

26,867 advisories