GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,416

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

525 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... Moderate Unreviewed

CVE-2020-24578 was published May 24, 2022

Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier,... Moderate Unreviewed

CVE-2019-11786 was published May 24, 2022

Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise... Moderate Unreviewed

CVE-2018-15645 was published May 24, 2022

Improper access control in mail module (channel partners) in Odoo Community 14.0 and earlier and... Moderate Unreviewed

CVE-2019-11783 was published May 24, 2022

In tangro Business Workflow before 1.18.1, an attacker can manipulate the value of PERSON in... Moderate Unreviewed

CVE-2020-26175 was published May 24, 2022

In tangro Business Workflow before 1.18.1, a user's profile contains some items that are greyed... Moderate Unreviewed

CVE-2020-26177 was published May 24, 2022

In tangro Business Workflow before 1.18.1, the documentId of attachment uploads to /api/document... Moderate Unreviewed

CVE-2020-26171 was published May 24, 2022

In the Pulsar manager 0.1.0 version, malicious users will be able to bypass pulsar-manager's... Moderate Unreviewed

CVE-2020-17520 was published May 24, 2022

In showProvisioningNotification of ConnectivityService.java, there is an unsafe PendingIntent.... Moderate Unreviewed

CVE-2020-27041 was published May 24, 2022

In createSimSelectNotification of SimSelectNotification.java, there is a possible permission... Moderate Unreviewed

CVE-2020-27034 was published May 24, 2022

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan... Moderate Unreviewed

CVE-2020-7337 was published May 24, 2022

In BigBlueButton before 2.2.29, a user can vote more than once in a single poll. Moderate Unreviewed

CVE-2020-28953 was published May 24, 2022

Azure Sphere Information Disclosure Vulnerability This CVE ID is unique from CVE-2020-16985. Moderate Unreviewed

CVE-2020-16990 was published May 24, 2022

In callCallbackForRequest of ConnectivityService.java, there is a possible permission bypass due... Moderate Unreviewed

CVE-2020-0454 was published May 24, 2022

SaltStack Salt Allows creating certificates with weak file permissions Moderate

CVE-2020-17490 was published for salt (pip) May 24, 2022

Synology Router Manager (SRM) before 1.2.4-8081 does not include the HTTPOnly flag in a Set... Moderate Unreviewed

CVE-2020-27658 was published May 24, 2022

SolarWinds N-Central version 12.3 GA and lower does not set the JSESSIONID attribute to HTTPOnly.... Moderate Unreviewed

CVE-2020-15910 was published May 24, 2022

In showDataRoamingNotification of NotificationMgr.java, there is a possible permission bypass due... Moderate Unreviewed

CVE-2020-0400 was published May 24, 2022

In updateMwi of NotificationMgr.java, there is a possible permission bypass due to a... Moderate Unreviewed

CVE-2020-0398 was published May 24, 2022

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2... Moderate Unreviewed

CVE-2020-13341 was published May 24, 2022

debian/sympa.postinst for the Debian Sympa package before 6.2.40~dfsg-7 uses mode 4755 for... Moderate Unreviewed

CVE-2020-26932 was published May 24, 2022

An issue was discovered in Zoho Application Control Plus before version 10.0.511. The Element... Moderate Unreviewed

CVE-2020-15595 was published May 24, 2022

A vulnerability in the file system permissions of Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3503 was published May 24, 2022

Insufficient policy enforcement in Blink in Google Chrome prior to 85.0.4183.83 allowed a remote... Moderate Unreviewed

CVE-2020-6562 was published May 24, 2022

Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a... Moderate Unreviewed

CVE-2020-6558 was published May 24, 2022

Previous 1…13…21 Next

Previous 1 2 … 11 12 13 14 15 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

525 advisories