GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,306

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

295 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before... Moderate Unreviewed

CVE-2019-6791 was published May 24, 2022

An issue was discovered in GitLab Community and Enterprise Edition 8.x, 9.x, 10.x, and 11.x... Moderate Unreviewed

CVE-2019-6995 was published May 24, 2022

JetBrains YouTrack before 2019.2.53938 was using incorrect settings, allowing a user without... Moderate Unreviewed

CVE-2019-14956 was published May 24, 2022

The PKI keys exported using the command "run request security pki key-pair export" on Junos OS... Low Unreviewed

CVE-2019-0073 was published May 24, 2022

OX App Suite through 7.10.2 has Insecure Permissions. High Unreviewed

CVE-2019-14226 was published May 24, 2022

Missing permission check in Jenkins Support Core Plugin Moderate

CVE-2019-16539 was published for org.jenkins-ci.plugins:support-core (Maven) May 24, 2022

Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a... Moderate Unreviewed

CVE-2019-13727 was published May 24, 2022

Gentoo Portage through 2.3.84 allows local users to place a Trojan horse plugin in the /usr/lib64... Moderate Unreviewed

CVE-2019-20384 was published May 24, 2022

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR... Moderate Unreviewed

CVE-2020-7063 was published May 24, 2022

In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions... Moderate Unreviewed

CVE-2020-13230 was published May 24, 2022

Improper Preservation of Permissions in Apache Struts High

CVE-2019-0233 was published for org.apache.struts:struts2-core (Maven) May 24, 2022

In Telephony, there are possible leaks of sensitive data due to missing permission checks. This... Moderate Unreviewed

CVE-2020-0265 was published May 24, 2022

In Android Auto Settings, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed

CVE-2020-0269 was published May 24, 2022

In Settings, there is a possible permissions bypass. This could lead to local information... Moderate Unreviewed

CVE-2020-0331 was published May 24, 2022

In core networking, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2020-0327 was published May 24, 2022

Inappropriate implementation in permissions in Google Chrome prior to 85.0.4183.83 allowed a... Moderate Unreviewed

CVE-2020-6564 was published May 24, 2022

A security feature bypass vulnerability exists when Microsoft Windows fails to handle file... Moderate Unreviewed

CVE-2020-16910 was published May 24, 2022

Improper permissions in the installer for the Intel(R) HID Event Filter Driver, all versions, may... High Unreviewed

CVE-2020-12332 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Advisor tools before version 2020 Update 2... High Unreviewed

CVE-2020-12334 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Falcon 8+ UAS AscTec Thermal Viewer, all... High Unreviewed

CVE-2020-12330 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Processor Identification Utility before... High Unreviewed

CVE-2020-12335 was published May 24, 2022

Improper permissions in the Intel(R) Data Center Manager Console before version 3.6.2 may allow... Moderate Unreviewed

CVE-2020-12353 was published May 24, 2022

Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an... High Unreviewed

CVE-2020-24525 was published May 24, 2022

Improper preservation of permissions in Nagios XI 5.7.4 allows a local, low-privileged,... High Unreviewed

CVE-2020-5796 was published May 24, 2022

When sharing geolocation during an active WebRTC share, Firefox could have reset the webRTC... Moderate Unreviewed

CVE-2021-23963 was published May 24, 2022

Previous 1 2 3 4 5 6 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

295 advisories