GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,852
Composer 5,572
Erlang 49
GitHub Actions 49
Go 3,489
Maven 6,401
npm 5,722
NuGet 892
pip 4,745
Pub 13
RubyGems 1,033
Rust 1,228
Swift 53

Unreviewed advisories

All unreviewed 297,646

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,075 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WP Human Resource Management plugin before 2.2.6 for WordPress does not ensure that a leave... High Unreviewed

CVE-2019-9574 was published May 13, 2022

Insufficient policy validation in ServiceWorker in Google Chrome prior to 72.0.3626.81 allowed a... Moderate Unreviewed

CVE-2019-5779 was published May 13, 2022

Chamilo Chamilo-lms version 1.11.8 and earlier contains an Incorrect Access Control vulnerability... Moderate Unreviewed

CVE-2019-1000017 was published May 13, 2022

An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly... High Unreviewed

CVE-2019-0573 was published May 13, 2022

An elevation of privilege vulnerability exists in the Microsoft XmlDocument class that could... High Unreviewed

CVE-2019-0555 was published May 13, 2022

An elevation of privilege vulnerability exists in Microsoft Edge Browser Broker COM object, aka ... High Unreviewed

CVE-2019-0566 was published May 13, 2022

ABAP BASIS function modules INST_CREATE_R3_RFC_DEST, INST_CREATE_TCPIP_RFCDEST, and... High Unreviewed

CVE-2019-0279 was published May 13, 2022

ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for... High Unreviewed

CVE-2019-0270 was published May 13, 2022

SAP Disclosure Management, version 10.01, does not perform necessary authorization checks for an... High Unreviewed

CVE-2019-0258 was published May 13, 2022

Customizing functionality of SAP NetWeaver AS ABAP Platform (fixed in versions from 7.0 to 7.02,... High Unreviewed

CVE-2019-0257 was published May 13, 2022

Under some circumstances, masterdata maintenance in SAP BW/4HANA (fixed in DW4CORE version 1.0 ... High Unreviewed

CVE-2019-0243 was published May 13, 2022

In multiple functions of ContentProvider.java, there is a possible permission bypass due to a... Moderate Unreviewed

CVE-2018-9548 was published May 13, 2022

In onCheckedChanged of BluetoothPairingController.java, there is a possible way to retrieve... Moderate Unreviewed

CVE-2018-9457 was published May 13, 2022

In Octopus Deploy 2.0 and later before 2018.3.7, an authenticated user, with variable edit... Moderate Unreviewed

CVE-2018-9039 was published May 13, 2022

Tarantella Enterprise before 3.11 allows bypassing Access Control. High Unreviewed

CVE-2018-19754 was published May 13, 2022

The skin-management feature in tianti 2.3 allows remote authenticated users to bypass intended... Moderate Unreviewed

CVE-2018-19110 was published May 13, 2022

Incorrect Access Control in mod_inetd.cgi in VIVOTEK Network Camera Series products with firmware... Moderate Unreviewed

CVE-2018-18004 was published May 13, 2022

EasyLobby Solo is vulnerable to a denial of service. By visiting the kiosk and accessing the task... High Unreviewed

CVE-2018-17490 was published May 13, 2022

EasyLobby Solo could allow a local attacker to gain elevated privileges on the system. By... High Unreviewed

CVE-2018-17491 was published May 13, 2022

FURUNO FELCOM 250 and 500 devices allow unauthenticated users to change the password for the... Critical Unreviewed

CVE-2018-16591 was published May 13, 2022

AudioCodes IP phone 420HD devices using firmware version 2.2.12.126 allow Remote Code Execution. High Unreviewed

CVE-2018-10093 was published May 13, 2022

Dolibarr arbitrary commands execution High

CVE-2018-10092 was published for dolibarr/dolibarr (Composer) May 13, 2022

Incorrect permission checks in Pipeline: Nodes and Processes plugin Moderate

CVE-2018-1000015 was published for org.jenkins-ci.plugins.workflow:workflow-durable-task-step (Maven) May 13, 2022

TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n have too... Moderate Unreviewed

CVE-2017-8217 was published May 13, 2022

In the ServiceManager::add function in the hardware service manager, there is an insecure... High Unreviewed

CVE-2017-13209 was published May 13, 2022

Previous 1…272…283 Next

Previous 1 2 … 270 271 272 273 274 … 282 283 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,075 advisories