Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,830 advisories

Loading
TP-Link EAP Controller and Omada Controller versions 2.5.4_Windows/2.6.0_Windows do not control... High Unreviewed
CVE-2018-10168 was published May 13, 2022
7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the... High Unreviewed
CVE-2018-10172 was published May 13, 2022
Improper Privilege Management in Jenkins High
CVE-2018-1000865 was published for org.jenkins-ci.plugins:script-security (Maven) May 13, 2022
Jenkins Script Security and Pipeline Groovy Plugins Sandbox Bypass High
CVE-2018-1000866 was published for org.jenkins-ci.plugins.workflow:workflow-cps (Maven) May 13, 2022
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access... High Unreviewed
CVE-2018-1000634 was published May 13, 2022
LibreHealthIO lh-ehr version REL-2.0.0 contains a Authenticated Unrestricted File Write... High Unreviewed
CVE-2018-1000648 was published May 13, 2022
Battelle V2I Hub 2.5.1 is vulnerable to a denial of service, caused by the failure to restrict... High Unreviewed
CVE-2018-1000624 was published May 13, 2022
MyBB Group MyBB contains a Incorrect Access Control vulnerability in Private forums that can... Moderate Unreviewed
CVE-2018-1000503 was published May 13, 2022
Kubernetes CRI-O version prior to 1.9 contains a Privilege Context Switching Error (CWE-270)... High Unreviewed
CVE-2018-1000400 was published May 13, 2022
I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in... Critical Unreviewed
CVE-2018-1000141 was published May 13, 2022
Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident... High Unreviewed
CVE-2018-1000133 was published May 13, 2022
Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a... High Unreviewed
CVE-2018-1000028 was published May 13, 2022
AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows... High Unreviewed
CVE-2018-0821 was published May 13, 2022
The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold,... High Unreviewed
CVE-2018-0751 was published May 13, 2022
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1,... High Unreviewed
CVE-2018-0748 was published May 13, 2022
Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier allows a remote attacker with... High Unreviewed
CVE-2018-0610 was published May 13, 2022
NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4... High Unreviewed
CVE-2018-0613 was published May 13, 2022
Privilege escalation vulnerability in INplc-RT 3.08 and earlier allows an attacker with... Moderate Unreviewed
CVE-2018-0671 was published May 13, 2022
baserCMS Access Control Bypass Moderate
CVE-2018-0573 was published for baserproject/basercms (Composer) May 13, 2022
Cybozu Office 10.0.0 to 10.8.0 allows authenticated attackers to bypass authentication to obtain... Moderate Unreviewed
CVE-2018-0566 was published May 13, 2022
A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not... Moderate Unreviewed
CVE-2018-0010 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, user-level... High Unreviewed
CVE-2017-9724 was published May 13, 2022
An Improper Privilege Management issue was discovered in Fuji Electric Monitouch V-SFT versions... Moderate Unreviewed
CVE-2017-9662 was published May 13, 2022
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap)... High Unreviewed
CVE-2017-9450 was published May 13, 2022
In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5... High Unreviewed
CVE-2017-9324 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database