Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,830 advisories

Loading
Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but... High Unreviewed
CVE-2018-20193 was published May 13, 2022
Jenkins Agiletestware Pangolin Connector for TestRail Plugin CSRF vulnerability and missing permission checks Moderate
CVE-2018-1999032 was published for org.jenkins-ci.plugins:pangolin-testrail-connector (Maven) May 13, 2022
An issue was discovered in ADTRAN PMAA 1.6.2-1, 1.6.3, and 1.6.4. NETCONF Access Management (NACM... High Unreviewed
CVE-2018-19648 was published May 13, 2022
An issue was discovered in hitshop through 2014-07-15. There is an elevation-of-privilege... High Unreviewed
CVE-2018-19853 was published May 13, 2022
PRTG Network Monitor before 18.2.40.1683 allows an authenticated user with a read-only account to... High Unreviewed
CVE-2018-19411 was published May 13, 2022
An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe provides "NT... High Unreviewed
CVE-2018-18252 was published May 13, 2022
An issue was discovered in manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux... High Unreviewed
CVE-2018-15912 was published May 13, 2022
An issue was discovered in Ivanti Workspace Control before 10.3.10.0 and RES One Workspace. A... High Unreviewed
CVE-2018-15592 was published May 13, 2022
When BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.2.1-11.5.6,... Moderate Unreviewed
CVE-2018-15321 was published May 13, 2022
CyberArk Endpoint Privilege Manager 10.2.1.603 and earlier allows an attacker (who is able to... High Unreviewed
CVE-2018-14894 was published May 13, 2022
Subrion 4.2.1 is vulnerable to Improper Access control because user groups not having access to... Moderate Unreviewed
CVE-2018-14836 was published May 13, 2022
IBM Security Guardium Database Activity Monitor 9.0, 9.1, and 9.5 could allow a local user with... Moderate Unreviewed
CVE-2018-1368 was published May 13, 2022
In Octopus Deploy 3.0 onwards (before 2018.6.7), an authenticated user with incorrect permissions... Moderate Unreviewed
CVE-2018-12884 was published May 13, 2022
Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site... Critical Unreviewed
CVE-2018-12596 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11965 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11912 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11911 was published May 13, 2022
An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to modify... High Unreviewed
CVE-2018-11323 was published May 13, 2022
Moodle Improper Privilege Management Moderate
CVE-2018-1134 was published for moodle/moodle (Composer) May 13, 2022
Quest DR Series Disk Backup software version before 4.0.3.1 allows privilege escalation (issue 2... High Unreviewed
CVE-2018-11190 was published May 13, 2022
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction... High Unreviewed
CVE-2018-10906 was published May 13, 2022
A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as... High Unreviewed
CVE-2018-10853 was published May 13, 2022
In Octopus Deploy before 2018.4.7, target and tenant tag variable scopes were not checked against... High Unreviewed
CVE-2018-10550 was published May 13, 2022
A Missing Impersonation Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer... High Unreviewed
CVE-2018-10514 was published May 13, 2022
A vulnerability in London Trust Media Private Internet Access (PIA) VPN Client v77 for Windows... High Unreviewed
CVE-2018-10190 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database