GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
133 advisories
Filter by severity
Through complicated navigations with new windows, an HTTP page could have inherited a secure lock...
Moderate
Unreviewed
CVE-2021-23998
was published
May 24, 2022
Address bar search suggestions in private browsing mode were re-using session data from normal...
Moderate
Unreviewed
CVE-2021-29963
was published
May 24, 2022
wire-ios is the iOS version of Wire, an open-source secure messaging app. wire-ios versions 3.8.0...
Moderate
Unreviewed
CVE-2021-32665
was published
May 24, 2022
There is a denial of service vulnerability in some versions of ManageOne. In specific scenarios,...
Moderate
Unreviewed
CVE-2021-22339
was published
May 24, 2022
An issue existed in the handling of iMessage tapbacks. The issue was resolved with additional...
Moderate
Unreviewed
CVE-2020-9885
was published
May 24, 2022
There is an information disclosure vulnerability in several smartphones. The device does not...
Moderate
Unreviewed
CVE-2020-9109
was published
May 24, 2022
IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using...
Moderate
Unreviewed
CVE-2020-11985
was published
May 24, 2022
An exploitable code execution vulnerability exists in the PLC_Task functionality of 3S-Smart...
Moderate
Unreviewed
CVE-2020-6081
was published
May 24, 2022
** DISPUTED ** A certain Postfix 2.10.1-7 package could allow an attacker to send an email from...
Moderate
Unreviewed
CVE-2020-12063
was published
May 24, 2022
An issue was discovered on Tata Sonata Smart SF Rush 1.12 devices. It has been identified that...
Moderate
Unreviewed
CVE-2020-11539
was published
May 24, 2022
Insufficient data validation in developer tools in Google Chrome prior to 81.0.4044.92 allowed a...
Moderate
Unreviewed
CVE-2020-6443
was published
May 24, 2022
An issue was discovered in OpenWrt 18.06.0 to 18.06.6 and 19.07.0, and LEDE 17.01.0 to 17.01.7. A...
Moderate
Unreviewed
CVE-2020-7982
was published
May 24, 2022
A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file...
Moderate
Unreviewed
CVE-2019-15613
was published
May 24, 2022
com.proxyman.NSProxy.HelperTool in Privileged Helper Tool in Proxyman for macOS 1.11.0 and...
Moderate
Unreviewed
CVE-2019-20057
was published
May 24, 2022
Magento 2 Community Edition Insufficient Logging
Moderate
CVE-2019-8124
was published
for
magento/community-edition
(Composer)
May 24, 2022
In SAP NetWeaver Process Integration (AS2 Adapter), before versions 1.0 and 2.0, the attacker is...
Moderate
Unreviewed
CVE-2019-0379
was published
May 24, 2022
rpcapd/daemon.c in libpcap before 1.9.1 on non-Windows platforms provides details about why...
Moderate
Unreviewed
CVE-2019-15162
was published
May 24, 2022
If a wildcard ('*') is specified for the host in Content Security Policy (CSP) directives, any...
Moderate
Unreviewed
CVE-2019-11737
was published
May 24, 2022
A vulnerability in the statistics collection service of Cisco HyperFlex Software could allow an...
Moderate
Unreviewed
CVE-2019-12620
was published
May 24, 2022
A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an...
Moderate
Unreviewed
CVE-2019-5478
was published
May 24, 2022
In Hunesion i-oneNet version 3.0.7 ~ 3.0.53 and 4.0.4 ~ 4.0.16, due to the lack of update file...
Moderate
Unreviewed
CVE-2019-12804
was published
May 24, 2022
A vulnerability in the BIOS upgrade utility of Cisco Unified Computing System (UCS) C-Series Rack...
Moderate
Unreviewed
CVE-2019-1880
was published
May 24, 2022
This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions...
Moderate
Unreviewed
CVE-2019-5431
was published
May 24, 2022
resolv.c in the DNS resolver in uIP, and dns.c in the DNS resolver in lwIP 1.4.1 and earlier,...
Moderate
Unreviewed
CVE-2014-4883
was published
May 17, 2022
The Frontel protocol before 3 on RSI Video Technologies Videofied devices does not use integrity...
Moderate
Unreviewed
CVE-2015-8254
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API