Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,388 advisories

Loading
Directory permissions in the Intel OpenVINO Toolkit for Windows before version 2018.1.265 may... High Unreviewed
CVE-2018-12162 was published May 13, 2022
Insufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1... Moderate Unreviewed
CVE-2018-12200 was published May 13, 2022
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before... Low Unreviewed
CVE-2018-12209 was published May 13, 2022
Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before... Low Unreviewed
CVE-2018-12217 was published May 13, 2022
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before... Moderate Unreviewed
CVE-2018-12223 was published May 13, 2022
Cloud Foundry BOSH CLI, versions prior to v3.0.1, contains an improper access control... High Unreviewed
CVE-2018-1231 was published May 13, 2022
An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART... High Unreviewed
CVE-2018-12259 was published May 13, 2022
Incorrect access control in ECOS System Management Appliance (aka SMA) 5.2.68 allows a user to... High Unreviewed
CVE-2018-12335 was published May 13, 2022
A vulnerability where a WebExtension can run content scripts in disallowed contexts following... Moderate Unreviewed
CVE-2018-12396 was published May 13, 2022
express-cart allows any user to create an admin user High
CVE-2018-12457 was published for express-cart (npm) May 13, 2022
Froxlor Incorrect Access Control High
CVE-2018-12642 was published for froxlor/froxlor (Composer) May 13, 2022
Phusion Passenger incorrect permission assignment Moderate
CVE-2018-12615 was published for passenger (RubyGems) May 13, 2022
jhutchings1
Credited to jhutchings1
protected/apps/admin/controller/photoController.php in YXcms 1.4.7 allows remote attackers to... Moderate Unreviewed
CVE-2018-13025 was published May 13, 2022
All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege... High Unreviewed
CVE-2018-13110 was published May 13, 2022
Incorrect access controls in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allow attackers to... High Unreviewed
CVE-2018-13321 was published May 13, 2022
Incorrect access controls in ajaxdata.php in TerraMaster TOS version 3.1.03 allow attackers to... Moderate Unreviewed
CVE-2018-13355 was published May 13, 2022
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows... High Unreviewed
CVE-2018-13399 was published May 13, 2022
An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions... Moderate Unreviewed
CVE-2018-1354 was published May 13, 2022
The HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 allows an attacker to conduct... Critical Unreviewed
CVE-2018-13791 was published May 13, 2022
mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect file access control in situations... Critical Unreviewed
CVE-2018-14043 was published May 13, 2022
Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0)... High Unreviewed
CVE-2018-1417 was published May 13, 2022
The installer for the Alcatel OSPREY3_MINI Modem component on EE EE40VB 4G mobile broadband... High Unreviewed
CVE-2018-14327 was published May 13, 2022
Incorrect access control in the /mysql/api/droboapp/data endpoint in Drobo 5N2 NAS version 4.0.5... Critical Unreviewed
CVE-2018-14703 was published May 13, 2022
The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access... Moderate Unreviewed
CVE-2018-14934 was published May 13, 2022
Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for SystemUI... Critical Unreviewed
CVE-2018-14981 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database