GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,819

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper access control in mail module (channel partners) in Odoo Community 14.0 and earlier and... Moderate Unreviewed

CVE-2019-11783 was published May 24, 2022

In tangro Business Workflow before 1.18.1, an attacker can manipulate the value of PERSON in... Moderate Unreviewed

CVE-2020-26175 was published May 24, 2022

In tangro Business Workflow before 1.18.1, a user's profile contains some items that are greyed... Moderate Unreviewed

CVE-2020-26177 was published May 24, 2022

In tangro Business Workflow before 1.18.1, the documentId of attachment uploads to /api/document... Moderate Unreviewed

CVE-2020-26171 was published May 24, 2022

In the Pulsar manager 0.1.0 version, malicious users will be able to bypass pulsar-manager's... Moderate Unreviewed

CVE-2020-17520 was published May 24, 2022

AdRem NetCrunch 10.6.0.4587 allows Remote Code Execution. In the NetCrunch web client, a read... High Unreviewed

CVE-2019-14479 was published May 24, 2022

An issue was discovered in Xen through 4.14.x. In the Ocaml xenstored implementation, the... High Unreviewed

CVE-2020-29479 was published May 24, 2022

In showProvisioningNotification of ConnectivityService.java, there is an unsafe PendingIntent.... Moderate Unreviewed

CVE-2020-27041 was published May 24, 2022

In createSimSelectNotification of SimSelectNotification.java, there is a possible permission... Moderate Unreviewed

CVE-2020-27034 was published May 24, 2022

Incorrect permissions are set by default for an API entry-point of a specific service, allowing a... High Unreviewed

CVE-2020-25191 was published May 24, 2022

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan... Moderate Unreviewed

CVE-2020-7337 was published May 24, 2022

The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3, 3.4.x prior to 3.4.4, and 4.0.x prior to 4.0.1... High Unreviewed

CVE-2020-4002 was published May 24, 2022

In BigBlueButton before 2.2.29, a user can vote more than once in a single poll. Moderate Unreviewed

CVE-2020-28953 was published May 24, 2022

OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected... Critical Unreviewed

CVE-2020-11831 was published May 24, 2022

An improper file permissions vulnerability affects Kata Containers prior to 1.11.5. When using a... High Unreviewed

CVE-2020-28914 was published May 24, 2022

A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01... High Unreviewed

CVE-2020-28055 was published May 24, 2022

Azure Sphere Information Disclosure Vulnerability This CVE ID is unique from CVE-2020-16985. Moderate Unreviewed

CVE-2020-16990 was published May 24, 2022

In callCallbackForRequest of ConnectivityService.java, there is a possible permission bypass due... Moderate Unreviewed

CVE-2020-0454 was published May 24, 2022

Improper file permissions in the installer for the Intel(R) Media SDK for Windows before version... High Unreviewed

CVE-2019-11121 was published May 24, 2022

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate... High Unreviewed

CVE-2020-3595 was published May 24, 2022

Ubuntu's packaging of libvirt in 20.04 LTS created a control socket with world read and write... High Unreviewed

CVE-2020-15708 was published May 24, 2022

SaltStack Salt Allows creating certificates with weak file permissions Moderate

CVE-2020-17490 was published for salt (pip) May 24, 2022

Synology Router Manager (SRM) before 1.2.4-8081 does not include the HTTPOnly flag in a Set... Moderate Unreviewed

CVE-2020-27658 was published May 24, 2022

An issue was discovered in Home DNS Server 0.10. Due to insufficient access restrictions in the... High Unreviewed

CVE-2020-26132 was published May 24, 2022

Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1... High Unreviewed

CVE-2020-26130 was published May 24, 2022

Previous 1…30…56 Next

Previous 1 2 … 28 29 30 31 32 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories