Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
An exploitable privilege escalation vulnerability exists in the Clean My Mac X, version 4.04,... Moderate Unreviewed
CVE-2018-4043 was published May 13, 2022
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X... Moderate Unreviewed
CVE-2018-4055 was published May 13, 2022
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4047 was published May 13, 2022
Improper Input Validation in Jenkins High
CVE-2017-1000394 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
Improper Input Validation in Spring AMQP Critical
CVE-2016-2173 was published for org.springframework.amqp:spring-amqp (Maven) May 13, 2022
Policies not properly enforced in OWASP Java HTML Sanitizer Critical
CVE-2021-42575 was published for com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer (Maven) Oct 19, 2021
Improper Input Validation in Apache Tomcat Moderate
CVE-2014-0033 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
Improper Input Validation in libpam4j Moderate
CVE-2017-12197 was published for org.kohsuke:libpam4j (Maven) May 13, 2022
Improper Input Validation Apache Commons Email High
CVE-2018-1294 was published for org.apache.commons:commons-email (Maven) May 14, 2022
XML External Entity Reference in RESTEasy Moderate
CVE-2014-7839 was published for org.jboss.resteasy:resteasy-jaxrs (Maven) May 17, 2022
A security issue was discovered in ingress-nginx where a user that can create or update ingress... High Unreviewed
CVE-2021-25746 was published May 7, 2022
An exploitable denial of service vulnerability exists in the object lookup functionality of Yara... Moderate Unreviewed
CVE-2019-5020 was published May 24, 2022
Improper Input Validation in Apache Karaf Moderate
CVE-2014-0219 was published for org.apache.karaf:apache-karaf (Maven) May 14, 2022
The Aviatrix OpenVPN client through 2.5.7 on Linux, macOS, and Windows is vulnerable when OpenSSL... High Unreviewed
CVE-2020-7224 was published May 24, 2022
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X... High Unreviewed
CVE-2018-4054 was published May 13, 2022
An exploitable denial-of-service vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4046 was published May 13, 2022
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4045 was published May 13, 2022
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4044 was published May 13, 2022
In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before... High Unreviewed
CVE-2020-7452 was published May 24, 2022
An exploitable privilege escalation vulnerability exists in the way the CleanMyMac X software... Moderate Unreviewed
CVE-2018-4032 was published May 13, 2022
An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X,... Moderate Unreviewed
CVE-2018-4042 was published May 13, 2022
Improper Input Validation in Apache Axis2 High
CVE-2010-1632 was published for org.apache.axis2.wso2:axis2 (Maven) May 17, 2022
Improper Input Validation in Apache Kafka High
CVE-2018-17196 was published for org.apache.kafka:kafka (Maven) May 24, 2022
In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to cause a denial... Moderate Unreviewed
CVE-2020-9014 was published May 24, 2022
Improper Input Validation in Apache Commons Email High
CVE-2017-9801 was published for org.apache.commons:commons-email (Maven) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database