GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,616

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,371 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

WordPress before 5.5.2 mishandles deserialization requests in wp-includes/Requests/Utility... Critical Unreviewed

CVE-2020-28032 was published May 24, 2022

A accessmgrservlet classname deserialization of untrusted data remote code execution... Critical Unreviewed

CVE-2020-24648 was published May 24, 2022

A Remote Code Execution vulnerability exists in PcVue from version 8.10 onward, due to the unsafe... Critical Unreviewed

CVE-2020-26867 was published May 24, 2022

IBM QRadar SIEM 7.3 and 7.4 could allow a remote attacker to execute arbitrary commands on the... High Unreviewed

CVE-2020-4280 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It uses... High Unreviewed

CVE-2020-25258 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It uses... High Unreviewed

CVE-2020-25259 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It... High Unreviewed

CVE-2020-25260 was published May 24, 2022

Use of unsafe yaml load. Allows instantiation of arbitrary objects. The flaw itself is caused by... Moderate Unreviewed

CVE-2020-10289 was published May 24, 2022

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute... High Unreviewed

CVE-2020-4589 was published May 24, 2022

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to achieve... High Unreviewed

CVE-2020-14172 was published May 24, 2022

compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates... High Unreviewed

CVE-2020-14933 was published May 24, 2022

In BnAAudioService::onTransact of IAAudioService.cpp, there is a possible out of bounds read due... Low Unreviewed

CVE-2020-0132 was published May 24, 2022

The affected product is vulnerable to the handling of serialized data. The issue results from the... Moderate Unreviewed

CVE-2020-12000 was published May 24, 2022

TylerTech Eagle 2018.3.11 deserializes untrusted user input, resulting in remote code execution... High Unreviewed

CVE-2019-16112 was published May 24, 2022

Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated... High Unreviewed

CVE-2020-5741 was published May 24, 2022

The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote... High Unreviewed

CVE-2020-12133 was published May 24, 2022

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow an authenticated user to send a specially crafted... Moderate Unreviewed

CVE-2020-4271 was published May 24, 2022

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component:... Moderate Unreviewed

CVE-2020-2757 was published May 24, 2022

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component:... Moderate Unreviewed

CVE-2020-2756 was published May 24, 2022

In Rockwell Automation all versions of FactoryTalk Diagnostics software, a subsystem of the... Critical Unreviewed

CVE-2020-6967 was published May 24, 2022

Zoho ManageEngine Desktop Central 10 allows remote code execution because of deserialization of... High Unreviewed

CVE-2020-10189 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft Exchange software when the software... High Unreviewed

CVE-2020-0688 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it... Moderate Unreviewed

CVE-2020-0618 was published May 24, 2022

Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Java... Moderate Unreviewed

CVE-2020-2604 was published May 24, 2022

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching... High Unreviewed

CVE-2020-2555 was published May 24, 2022

Previous 1…45…55 Next

Previous 1 2 … 43 44 45 46 47 … 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,371 advisories