GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,600

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,873 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Northern Electric & Power (NEP) inverter devices allow remote attackers to obtain potentially... High Unreviewed

CVE-2018-12927 was published May 14, 2022

Electro Industries GaugeTech Nexus devices allow remote attackers to obtain potentially sensitive... High Unreviewed

CVE-2018-12921 was published May 14, 2022

In Rclone 1.42, use of "rclone sync" to migrate data between two Google Cloud Storage buckets... High Unreviewed

CVE-2018-12907 was published May 14, 2022

IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the... High Unreviewed

CVE-2013-0589 was published May 14, 2022

The komoot GmbH "Komoot - Cycling & Hiking Maps" app before 9.3.2 -- aka komoot-cycling-hiking... High Unreviewed

CVE-2017-14709 was published May 14, 2022

MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional before V9.34... High Unreviewed

CVE-2018-13860 was published May 14, 2022

TeamViewer through 13.1.1548 stores a password in Unicode format within TeamViewer.exe process... High Unreviewed

CVE-2018-14333 was published May 14, 2022

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before... High Unreviewed

CVE-2018-14602 was published May 14, 2022

LICA miniCMTS E8K(u/i/...) devices allow remote attackers to obtain sensitive information via a... High Unreviewed

CVE-2018-14083 was published May 14, 2022

Technicolor TC7200 with firmware STD6.01.12 could allow remote attackers to obtain sensitive... High Unreviewed

CVE-2014-1677 was published May 14, 2022

EntryPass N5200 Active Network Control Panel allows remote attackers to read device memory and... High Unreviewed

CVE-2014-9303 was published May 14, 2022

Information disclosure vulnerability in Netatmo Indoor Module firmware 100 and earlier. High Unreviewed

CVE-2015-1600 was published May 14, 2022

The sendHashByUser function in Apache OpenMeetings before 3.1.1 generates predictable password... High Unreviewed

CVE-2016-0783 was published May 14, 2022

Cisco EPC3928 devices allow remote attackers to obtain sensitive configuration and credential... High Unreviewed

CVE-2016-1337 was published May 14, 2022

Exposure of Sensitive Information to an Unauthorized Actor in Apache Sling Servlets Post High

CVE-2016-0956 was published for org.apache.sling:org.apache.sling.servlets.post (Maven) May 14, 2022

Lenovo SHAREit before 3.2.0 for Windows and SHAREit before 3.5.48_ww for Android transfer files... High Unreviewed

CVE-2016-1489 was published May 14, 2022

ownCloud Server before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allow remote... High Unreviewed

CVE-2016-1499 was published May 14, 2022

xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers... High Unreviewed

CVE-2016-2055 was published May 14, 2022

Apache OpenMeetings allows remote attackers to read arbitrary files by attempting to upload a file High

CVE-2016-2164 was published for org.apache.openmeetings:openmeetings-parent (Maven) May 14, 2022

The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to... High Unreviewed

CVE-2016-3717 was published May 14, 2022

Sensitive Information Disclosure in Zipato Zipabox Smart Home Controller allows remote attacker... High Unreviewed

CVE-2018-15125 was published May 14, 2022

When the F5 BIG-IP APM 13.0.0-13.1.1 or 12.1.0-12.1.3 renders certain pages (pages with a logon... High Unreviewed

CVE-2018-5544 was published May 14, 2022

/contingency/servlet/ServletFileDownload executes as root and provides unauthenticated access to... High Unreviewed

CVE-2018-14928 was published May 14, 2022

An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. A remote attacker... High Unreviewed

CVE-2018-14735 was published May 14, 2022

The SAN Manager Master Agent service (aka msragent.exe) in EMC Control Center before 6.1 does not... High Unreviewed

CVE-2008-5420 was published May 14, 2022

Previous 1…55…75 Next

Previous 1 2 … 53 54 55 56 57 … 74 75 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,873 advisories