Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
The Security Camera CZ application through 1.6.8 for Android stores potentially sensitive... High Unreviewed
CVE-2019-12763 was published May 24, 2022
The WebApp v04.68 in the supervisor on SAET Impianti Speciali TEBE Small 05.01 build 1137 devices... High Unreviewed
CVE-2019-9105 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20091 and earlier, 2019.010.20091 and earlier, 2017... High Unreviewed
CVE-2019-7815 was published May 24, 2022
A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed
CVE-2018-7844 was published May 24, 2022
A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed
CVE-2018-7848 was published May 24, 2022
DoBox_CstmBox_Info.model.htm on Kyocera TASKalfa 4002i and 6002i devices allows remote attackers... High Unreviewed
CVE-2018-16656 was published May 24, 2022
An issue was discovered on LG GAMP-7100, GAPM-7200, and GAPM-8000 routers. An unauthenticated... High Unreviewed
CVE-2019-7404 was published May 24, 2022
If a process running within Aruba Instant crashes, it may leave behind a "core dump", which... High Unreviewed
CVE-2018-7083 was published May 24, 2022
The ServiceNow driver in NetIQ Identity Manager versions prior to 4.6 are susceptible to an... High Unreviewed
CVE-2016-1600 was published May 24, 2022
The WP Backup+ (aka WPbackupplus) plugin through 2018-11-22 for WordPress allows remote attackers... High Unreviewed
CVE-2018-19456 was published May 24, 2022
An information disclosure vulnerability exists in the ACEManager authentication functionality of... High Unreviewed
CVE-2018-4069 was published May 24, 2022
An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task... High Unreviewed
CVE-2018-4070 was published May 24, 2022
An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task... High Unreviewed
CVE-2018-4071 was published May 24, 2022
An issue was discovered in the Ascensia Contour NEXT ONE app for iOS before 2019-01-15. An... High Unreviewed
CVE-2018-18975 was published May 24, 2022
An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01... High Unreviewed
CVE-2018-18977 was published May 24, 2022
HoneyPress through 2016-09-27 can be fingerprinted by attackers because of the ingrained unique... High Unreviewed
CVE-2019-11633 was published May 24, 2022
If a Sandbox content process is compromised, it can initiate an FTP download which will then use... High Unreviewed
CVE-2019-9802 was published May 24, 2022
ToolJet versions v0.5.0 to v1.2.2 are vulnerable to token leakage via Referer header that leads... High Unreviewed
CVE-2022-23067 was published May 19, 2022
Sensitive information disclosure due to insecure folder permissions. The following products are... High Unreviewed
CVE-2022-30990 was published May 19, 2022
A remote authenticated information disclosure vulnerability was discovered in Aruba ClearPass... High Unreviewed
CVE-2022-23671 was published May 18, 2022
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers... High Unreviewed
CVE-2014-0242 was published May 17, 2022
The MakerBot Replicator 5G printer runs an Apache HTTP Server with directory indexing enabled.... High Unreviewed
CVE-2014-9699 was published May 17, 2022
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain... High Unreviewed
CVE-2008-6279 was published May 17, 2022
phpBB vulnerable to sensitive information disclosure High
CVE-2008-6507 was published for phpbb/phpbb (Composer) May 17, 2022
Rudloff
Credited to Rudloff
Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 allows remote attackers to... High Unreviewed
CVE-2010-2982 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database