Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,383 advisories

Loading
WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings... Moderate Unreviewed
CVE-2018-1000510 was published May 13, 2022
WP ULike version 2.8.1, 3.1 contains a Incorrect Access Control vulnerability in AJAX that can... High Unreviewed
CVE-2018-1000511 was published May 13, 2022
Mycroft AI mycroft-core version 18.2.8b and earlier contains a Incorrect Access Control... High Unreviewed
CVE-2018-1000621 was published May 13, 2022
Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions... High Unreviewed
CVE-2018-1000209 was published May 13, 2022
MODX Revolution Incorrect Access Control vulnerability High
CVE-2018-1000207 was published for modx/revolution (Composer) May 13, 2022
Cobbler Improper Validation of Security Tokens Critical
CVE-2018-1000226 was published for cobbler (pip) May 13, 2022
LightSAML Incorrect Access Control vulnerability High
CVE-2018-1000165 was published for lightsaml/lightsaml (Composer) May 13, 2022
cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of... High Unreviewed
CVE-2018-1000158 was published May 13, 2022
Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that... Moderate Unreviewed
CVE-2018-1000080 was published May 13, 2022
roundcube version 1.3.4 and earlier contains an Insecure Permissions vulnerability in enigma... High Unreviewed
CVE-2018-1000071 was published May 13, 2022
iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in... High Unreviewed
CVE-2018-1000072 was published May 13, 2022
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces... High Unreviewed
CVE-2018-0982 was published May 13, 2022
Jerome Gamez Firebase Admin SDK for PHP Incorrect Access Control vulnerability High
CVE-2018-1000025 was published for kreait/firebase-php (Composer) May 13, 2022
The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold,... High Unreviewed
CVE-2018-0752 was published May 13, 2022
A vulnerability in the folder permissions of Cisco Webex Meetings client for Windows could allow... High Unreviewed
CVE-2018-0422 was published May 13, 2022
An improper access control vulnerability exists in Schneider Electric's U.motion Builder software... High Unreviewed
CVE-2017-9958 was published May 13, 2022
In Flatpak before 0.8.7, a third-party app repository could include malicious apps that contain... High Unreviewed
CVE-2017-9780 was published May 13, 2022
In Apache Impala (incubating) before 2.10.0, a malicious user with "ALTER" permissions on an... Moderate Unreviewed
CVE-2017-9792 was published May 13, 2022
Bamboo before 6.0.5, 6.1.x before 6.1.4, and 6.2.x before 6.2.1 had a REST endpoint that parsed a... High Unreviewed
CVE-2017-9514 was published May 13, 2022
The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices... Moderate Unreviewed
CVE-2017-9494 was published May 13, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a... Critical Unreviewed
CVE-2017-9482 was published May 13, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a... Critical Unreviewed
CVE-2017-9479 was published May 13, 2022
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed
CVE-2017-8858 was published May 13, 2022
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed
CVE-2017-8856 was published May 13, 2022
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed
CVE-2017-8857 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database