Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

987 advisories

Loading
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2017-2094 was published May 13, 2022
In Paessler PRTG Network Monitor 17.3.33.2830, it's possible to create a Map as a read-only user,... Moderate Unreviewed
CVE-2017-15917 was published May 13, 2022
TeamPass Improper Privilege Management Moderate
CVE-2017-15053 was published for nilsteampassnet/teampass (Composer) May 13, 2022
TeamPass Improper Privilege Management Moderate
CVE-2017-15052 was published for nilsteampassnet/teampass (Composer) May 13, 2022
OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains... Moderate Unreviewed
CVE-2017-15014 was published May 13, 2022
IBM UrbanCode Deploy (UCD) 6.1 and 6.2 could allow an authenticated user to edit objects that... Moderate Unreviewed
CVE-2017-1493 was published May 13, 2022
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used,... Moderate Unreviewed
CVE-2017-14124 was published May 13, 2022
In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X... Moderate Unreviewed
CVE-2017-13721 was published May 13, 2022
IBM Sterling File Gateway does not properly restrict user requests based on permission level.... Moderate Unreviewed
CVE-2017-1326 was published May 13, 2022
NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10... Moderate Unreviewed
CVE-2017-12422 was published May 13, 2022
GitLab Community Edition (CE) and Enterprise Edition (EE) before 9.0.11, 9.1.8, 9.2.8 allow an... Moderate Unreviewed
CVE-2017-11438 was published May 13, 2022
Cybozu Office 10.0.0 to 10.6.1 allows authenticated attackers to bypass access restriction to... Moderate Unreviewed
CVE-2017-10857 was published May 13, 2022
Tarball permission preservation in puppet Moderate
CVE-2017-10689 was published for puppet (RubyGems) May 13, 2022
BenK0lin
Credited to BenK0lin
Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality... Moderate Unreviewed
CVE-2017-10142 was published May 13, 2022
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2017-10103 was published May 13, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2017-10098 was published May 13, 2022
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite ... Moderate Unreviewed
CVE-2017-10094 was published May 13, 2022
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle... Moderate Unreviewed
CVE-2017-10046 was published May 13, 2022
Mahara 15.04 before 15.04.9 and 15.10 before 15.10.5 and 16.04 before 16.04.3 are vulnerable to a... Moderate Unreviewed
CVE-2017-1000156 was published May 13, 2022
Improper Privilege Management in Jenkins Config File Provider Plugin Moderate
CVE-2017-1000104 was published for org.jenkins-ci.plugins:config-file-provider (Maven) May 13, 2022
Tryton Information Disclosure Vulnerability Moderate
CVE-2017-0360 was published for trytond (pip) May 13, 2022
All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer... Moderate Unreviewed
CVE-2017-0310 was published May 13, 2022
katello Improper Privilege Management vulnerability Moderate
CVE-2017-2662 was published for katello (RubyGems) May 13, 2022
An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has... Moderate Unreviewed
CVE-2017-7918 was published May 13, 2022
A Permissions, Privileges, and Access Controls issue was discovered in ABB VSN300 WiFi Logger... Moderate Unreviewed
CVE-2017-7916 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database