Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,388 advisories

Loading
cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of... High Unreviewed
CVE-2018-1000158 was published May 13, 2022
LightSAML Incorrect Access Control vulnerability High
CVE-2018-1000165 was published for lightsaml/lightsaml (Composer) May 13, 2022
Cobbler Improper Validation of Security Tokens Critical
CVE-2018-1000226 was published for cobbler (pip) May 13, 2022
MODX Revolution Incorrect Access Control vulnerability High
CVE-2018-1000207 was published for modx/revolution (Composer) May 13, 2022
Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions... High Unreviewed
CVE-2018-1000209 was published May 13, 2022
WP ULike version 2.8.1, 3.1 contains a Incorrect Access Control vulnerability in AJAX that can... High Unreviewed
CVE-2018-1000511 was published May 13, 2022
Mycroft AI mycroft-core version 18.2.8b and earlier contains a Incorrect Access Control... High Unreviewed
CVE-2018-1000621 was published May 13, 2022
WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings... Moderate Unreviewed
CVE-2018-1000510 was published May 13, 2022
LibreHealthIO lh-ehr version REL-2.0.0 contains a Authenticated Unrestricted File Write in letter... High Unreviewed
CVE-2018-1000649 was published May 13, 2022
TOCK version prior to commit 42f7f36e74088036068d62253e1d8fb26605feed. For example... High Unreviewed
CVE-2018-1000660 was published May 13, 2022
ProtonVPN 1.3.3 for Windows suffers from a SYSTEM privilege escalation vulnerability through the ... Critical Unreviewed
CVE-2018-10169 was published May 13, 2022
NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the... Critical Unreviewed
CVE-2018-10170 was published May 13, 2022
The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access control mechanisms. Since... Critical Unreviewed
CVE-2018-10285 was published May 13, 2022
PureVPN 6.0.1 for Windows suffers from a SYSTEM privilege escalation vulnerability in its ... High Unreviewed
CVE-2018-10204 was published May 13, 2022
An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS... High Unreviewed
CVE-2018-1036 was published May 13, 2022
TunnelBear 3.2.0.6 for Windows suffers from a SYSTEM privilege escalation vulnerability through... Critical Unreviewed
CVE-2018-10381 was published May 13, 2022
In CMS Made Simple (CMSMS) through 2.2.7, the "file delete" operation in the admin dashboard... High Unreviewed
CVE-2018-10518 was published May 13, 2022
In CMS Made Simple (CMSMS) through 2.2.7, the "module remove" operation in the admin dashboard... High Unreviewed
CVE-2018-10520 was published May 13, 2022
CMS Made Simple (CMSMS) 2.2.7 contains a privilege escalation vulnerability from ordinary user to... High Unreviewed
CVE-2018-10519 was published May 13, 2022
SaferVPN 4.2.5 for Windows suffers from a SYSTEM privilege escalation vulnerability in its ... High Unreviewed
CVE-2018-10647 was published May 13, 2022
Golden Frog VyprVPN 2.12.1.8015 for Windows suffers from a SYSTEM privilege escalation... High Unreviewed
CVE-2018-10645 was published May 13, 2022
CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability... High Unreviewed
CVE-2018-10646 was published May 13, 2022
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning... High Unreviewed
CVE-2018-10709 was published May 13, 2022
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning... High Unreviewed
CVE-2018-10712 was published May 13, 2022
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning... High Unreviewed
CVE-2018-10710 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database