Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,873 advisories

Loading
Exposure of Sensitive Information in System.Net.Http High
CVE-2019-0545 was published for Microsoft.NETCore.App (NuGet) May 14, 2022
Libgcrypt before 1.8.1 does not properly consider Curve25519 side-channel attacks, which makes it... High Unreviewed
CVE-2017-0379 was published May 14, 2022
An issue was discovered in S-CMS 1.0. It allows reading certain files, such as PHP source code,... High Unreviewed
CVE-2018-20478 was published May 14, 2022
TP-Link TL-SC3130 1.6.18P12_121101 devices allow unauthenticated RTSP stream access, as... High Unreviewed
CVE-2018-18428 was published May 14, 2022
In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving... High Unreviewed
CVE-2017-15031 was published May 14, 2022
The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger... High Unreviewed
CVE-2018-19120 was published May 14, 2022
In Safari before 11.1, an information leakage issue existed in the handling of downloads in... High Unreviewed
CVE-2018-4186 was published May 14, 2022
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x... High Unreviewed
CVE-2018-17939 was published May 14, 2022
In Apache OFBiz 16.11.01 to 16.11.04, the OFBiz HTTP engine (org.apache.ofbiz.service.engine... High Unreviewed
CVE-2018-8033 was published May 14, 2022
Frog CMS 0.9.5 provides a directory listing for a /public request. High Unreviewed
CVE-2018-20776 was published May 14, 2022
D-Link DCS series Wi-Fi cameras expose sensitive information regarding the device configuration.... High Unreviewed
CVE-2018-18441 was published May 14, 2022
A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android (Consumer) versions... High Unreviewed
CVE-2018-18334 was published May 14, 2022
The Leagoo Z5C Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K... High Unreviewed
CVE-2018-14986 was published May 14, 2022
The Leagoo Z5C Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K... High Unreviewed
CVE-2018-14984 was published May 14, 2022
An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at ... High Unreviewed
CVE-2018-15658 was published May 14, 2022
An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. An... High Unreviewed
CVE-2018-15656 was published May 14, 2022
A WebExtension can request access to local files without the warning prompt stating that the... High Unreviewed
CVE-2018-12397 was published May 14, 2022
Exposure of Sensitive Information in Apache Pluto High
CVE-2018-1306 was published for org.apache.portals.pluto:pluto-container (Maven) May 14, 2022
In WordPress before 4.9.9 and 5.x before 5.0.1, the user-activation page could be read by a... High Unreviewed
CVE-2018-20151 was published May 14, 2022
In device configuration data, there is an improperly configured setting. This could lead to... High Unreviewed
CVE-2018-9526 was published May 14, 2022
An issue was discovered in ext/standard/link_win32.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7... High Unreviewed
CVE-2018-15132 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10... High Unreviewed
CVE-2018-4221 was published May 14, 2022
Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via an invalid channel_name... High Unreviewed
CVE-2018-8056 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is... High Unreviewed
CVE-2017-7116 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is... High Unreviewed
CVE-2017-7090 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database