GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,306 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can bypass the... Moderate Unreviewed

CVE-2020-12745 was published May 24, 2022

vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access... High Unreviewed

CVE-2020-12720 was published May 24, 2022

Improper serialization of internal state in the authorization subsystem in MongoDB Server's... Moderate Unreviewed

CVE-2020-7921 was published May 24, 2022

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper... Low Unreviewed

CVE-2020-1807 was published May 24, 2022

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level... Moderate Unreviewed

CVE-2020-11891 was published May 24, 2022

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level... Moderate Unreviewed

CVE-2020-11889 was published May 24, 2022

An issue was discovered in Sonatype Nexus Repository Manager in versions 3.21.1 and 3.22.0. It is... Moderate Unreviewed

CVE-2020-11753 was published May 24, 2022

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0... High Unreviewed

CVE-2019-20772 was published May 24, 2022

A remote authenticated authorization-bypass vulnerability in Wowza Streaming Engine 4.7.8 (build... High Unreviewed

CVE-2020-9004 was published May 24, 2022

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. It doesn't enforce... High Unreviewed

CVE-2020-11707 was published May 24, 2022

Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or... Moderate Unreviewed

CVE-2020-3952 was published May 24, 2022

An improper authorization vulnerability in FortiADC may allow a remote authenticated user with... Moderate Unreviewed

CVE-2020-9286 was published May 24, 2022

In NGINX Controller versions prior to 3.2.0, an unauthenticated attacker with network access to... High Unreviewed

CVE-2020-5863 was published May 24, 2022

GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push docker images. Moderate Unreviewed

CVE-2020-10952 was published May 24, 2022

HUAWEI smartphones P30 with versions earlier than 10.0.0.185(C00E85R1P11) have an improper access... Moderate Unreviewed

CVE-2020-1800 was published May 24, 2022

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software.... Moderate Unreviewed

CVE-2020-10839 was published May 24, 2022

cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows... Moderate Unreviewed

CVE-2020-10194 was published May 24, 2022

cPanel before 84.0.20 allows attackers to bypass intended restrictions on features and demo... Moderate Unreviewed

CVE-2020-10116 was published May 24, 2022

cPanel before 84.0.20 mishandles enforcement of demo checks in the Market UAPI namespace (SEC-542). Moderate Unreviewed

CVE-2020-10117 was published May 24, 2022

cPanel before 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd... High Unreviewed

CVE-2020-10120 was published May 24, 2022

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS... Moderate Unreviewed

CVE-2020-10081 was published May 24, 2022

In setBluetoothTethering of PanService.java, there is a possible permission bypass due to a... Moderate Unreviewed

CVE-2020-0085 was published May 24, 2022

In several functions of NotificationManagerService.java, there are missing permission checks.... Moderate Unreviewed

CVE-2020-0084 was published May 24, 2022

In setMasterMute of AudioService.java, there is a missing permission check. This could lead to... Low Unreviewed

CVE-2020-0047 was published May 24, 2022

The Avast AV parsing engine allows virus-detection bypass via a crafted ZIP archive. This affects... Moderate Unreviewed

CVE-2020-9399 was published May 24, 2022

Previous 1…73…93 Next

Previous 1 2 … 71 72 73 74 75 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,306 advisories