Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

336 advisories

Loading
An issue was discovered on Libre Wireless LS9 LS1.5/p7040 devices. There is Unauthenticated Root... Critical Unreviewed
CVE-2020-35757 was published May 24, 2022
Incorrect Access Control in Shopxo v1.4.0 and v1.5.0 allows remote attackers to gain privileges... Critical Unreviewed
CVE-2020-19778 was published May 24, 2022
Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x,... Critical Unreviewed
CVE-2021-22505 was published May 24, 2022
pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper... Critical Unreviewed
CVE-2020-15390 was published May 24, 2022
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an... Critical Unreviewed
CVE-2021-20021 was published May 24, 2022
zzcms 201910 contains an access control vulnerability through escalation of privileges in /user... Critical Unreviewed
CVE-2020-23426 was published May 24, 2022
The telnet administrator service running on port 650 on Gigaset DX600A v41.00-175 devices does... Critical Unreviewed
CVE-2021-25309 was published May 24, 2022
The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server... Critical Unreviewed
CVE-2021-21972 was published May 24, 2022
A vulnerability in an API endpoint of Cisco ACI Multi-Site Orchestrator (MSO) installed on the... Critical Unreviewed
CVE-2021-1388 was published May 24, 2022
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and... Critical Unreviewed
CVE-2021-27579 was published May 24, 2022
Privilege chaining vulnerability in acmailer ver. 4.0.2 and earlier, and acmailer DB ver. 1.1.4... Critical Unreviewed
CVE-2021-20618 was published May 24, 2022
Improper access control vulnerability in acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1... Critical Unreviewed
CVE-2021-20617 was published May 24, 2022
Windows Update Stack Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2021-1694 was published May 24, 2022
In reassemble_and_dispatch of packet_fragmenter.cc, there is a possible way to inject packets... Critical Unreviewed
CVE-2020-0471 was published May 24, 2022
An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka... Critical Unreviewed
CVE-2020-36155 was published May 24, 2022
An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka... Critical Unreviewed
CVE-2020-36157 was published May 24, 2022
An issue was discovered in G-Data before 25.5.9.25 using Symbolic links, it is possible to abuse... Critical Unreviewed
CVE-2020-27172 was published May 24, 2022
Beijing Huorong Internet Security 5.0.55.2 allows a non-admin user to escalate privileges by... Critical Unreviewed
CVE-2020-35364 was published May 24, 2022
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this... Critical Unreviewed
CVE-2020-12519 was published May 24, 2022
Improper privilege management on services run by Citrix Gateway Plug-in for Windows, versions... Critical Unreviewed
CVE-2020-8257 was published May 24, 2022
Versions of the Official registry Docker images through 2.7.0 contain a blank password for the... Critical Unreviewed
CVE-2020-29591 was published May 24, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile... Critical Unreviewed
CVE-2020-27134 was published May 24, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile... Critical Unreviewed
CVE-2020-27133 was published May 24, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile... Critical Unreviewed
CVE-2020-27132 was published May 24, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile... Critical Unreviewed
CVE-2020-27127 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database