GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,161
Composer 4,801
Erlang 36
GitHub Actions 29
Go 2,380
Maven 5,745
npm 4,010
NuGet 720
pip 3,810
Pub 12
RubyGems 930
Rust 986
Swift 38

Unreviewed advisories

All unreviewed 262,724

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,464 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A captured MAC/device ID of an iTrack Easy can be registered under multiple user accounts... Moderate Unreviewed

CVE-2016-6543 was published May 13, 2022

OSIsoft PI System software (Applications using PI Asset Framework (AF) Client versions prior to... Moderate Unreviewed

CVE-2016-8365 was published May 13, 2022

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying edit... Moderate Unreviewed

CVE-2016-9461 was published May 13, 2022

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from... Moderate Unreviewed

CVE-2016-9467 was published May 13, 2022

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying restore... Moderate Unreviewed

CVE-2016-9462 was published May 13, 2022

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from... Moderate Unreviewed

CVE-2016-9468 was published May 13, 2022

Kubernetes arbitrary file overwrite Moderate

CVE-2017-1002102 was published for k8s.io/kubernetes (Go) May 13, 2022

A regression was found in the Red Hat Enterprise Linux 6.9 version of httpd 2.2.15-60, causing... Moderate Unreviewed

CVE-2017-12171 was published May 13, 2022

Improper access control vulnerability in SYNO.Cal.EventBase in Synology Calendar before 2.0.1... Moderate Unreviewed

CVE-2017-15891 was published May 13, 2022

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM)... Moderate Unreviewed

CVE-2017-16766 was published May 13, 2022

A vulnerability was discovered in Siemens XHQ server 4 and 5 (4 before V4.7.1.3 and 5 before V5.0... Moderate Unreviewed

CVE-2017-6866 was published May 13, 2022

The dialog for creating cloud volumes (cinder provider) in CloudForms does not filter cloud... Moderate Unreviewed

CVE-2017-7497 was published May 13, 2022

An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has... Moderate Unreviewed

CVE-2017-7918 was published May 13, 2022

An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege enforcement. If a user has... Moderate Unreviewed

CVE-2017-8447 was published May 13, 2022

Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and... Moderate Unreviewed

CVE-2018-10631 was published May 13, 2022

A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed

CVE-2018-15398 was published May 13, 2022

Improper access control vulnerability in Synology Drive before 1.0.2-10275 allows remote... Moderate Unreviewed

CVE-2018-8922 was published May 13, 2022

Jenkins allows Bypass of Access Restrictions Moderate

CVE-2015-5325 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

The filesystem layer in the Linux kernel before 4.5.5 proceeds with post-rename operations after... Moderate Unreviewed

CVE-2016-6198 was published May 13, 2022

The cert_revoke command in FreeIPA does not check for the "revoke certificate" permission, which... Moderate Unreviewed

CVE-2016-5404 was published May 13, 2022

The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka... Moderate Unreviewed

CVE-2014-9422 was published May 13, 2022

The admin pages for power types and key types in Beaker before 20.1 do not have any access... Moderate Unreviewed

CVE-2015-3163 was published May 13, 2022

Gitea Arbitrary File Delete Vulnerability Moderate

CVE-2019-1000002 was published for code.gitea.io/gitea (Go) May 13, 2022

Contao Information Disclosure via Access Control Flaws Moderate

CVE-2018-20028 was published for contao/contao (Composer) May 13, 2022

Improper Access Control in Telerik Extensions Moderate

CVE-2018-17060 was published for TelerikMvcExtensions (NuGet) May 13, 2022

Previous 1 2 … 53 54 55 56 57 58 59 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,464 advisories