GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,702
Composer 5,025
Erlang 39
GitHub Actions 38
Go 2,662
Maven 6,115
npm 4,289
NuGet 760
pip 4,069
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,668

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,752 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from a stored XSS... Low Unreviewed

CVE-2020-13864 was published May 24, 2022

hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing... Low Unreviewed

CVE-2020-13791 was published May 24, 2022

In TimeCheck::TimeCheckThread::threadLoop of TimeCheck.cpp, there is a possible use-after-free... Low Unreviewed

CVE-2020-0199 was published May 24, 2022

Kibana versions before 6.8.9 and 7.7.0 contains a stored XSS flaw in the TSVB visualization. An... Low Unreviewed

CVE-2020-7015 was published May 24, 2022

In nci_proc_core_rsp of nci_hrcv.cc, there is a possible out of bounds read due to an incorrect... Low Unreviewed

CVE-2020-0154 was published May 24, 2022

In avb_vbmeta_image_verify of avb_vbmeta_image.c there is a possible out of bounds read due to a... Low Unreviewed

CVE-2020-0151 was published May 24, 2022

In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds... Low Unreviewed

CVE-2020-0164 was published May 24, 2022

In btm_proc_sp_req_evt of btm_sec.cc, there is a possible out of bounds read due to a missing... Low Unreviewed

CVE-2020-0144 was published May 24, 2022

In NxpNfc::ioctl of NxpNfc.cpp, there is a possible out of bounds read due to a missing bounds... Low Unreviewed

CVE-2020-0156 was published May 24, 2022

In OutputBuffersArray::realloc of CCodecBuffers.cpp, there is a possible heap disclosure due to a... Low Unreviewed

CVE-2020-0141 was published May 24, 2022

ServiceNow IT Service Management Kingston through Patch 14-1, London through Patch 7, and Madrid... Low Unreviewed

CVE-2019-20768 was published May 24, 2022

When attempting to create a new XFRM policy, a stack out-of-bounds read will occur if the user... Low Unreviewed

CVE-2019-14053 was published May 24, 2022

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1 and BIG-IQ 5.2.0-7... Low Unreviewed

CVE-2020-5890 was published May 24, 2022

IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting. This vulnerability allows... Low Unreviewed

CVE-2020-4360 was published May 24, 2022

IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting. This vulnerability allows... Low Unreviewed

CVE-2020-4431 was published May 24, 2022

Out of bound read in adm call back function due to incorrect boundary check for payload in... Low Unreviewed

CVE-2019-14039 was published May 24, 2022

Out of bound read in in fingerprint application due to requested data assigned to a local buffer... Low Unreviewed

CVE-2019-14042 was published May 24, 2022

Out of bound read in Fingerprint application due to requested data is being used without length... Low Unreviewed

CVE-2019-14043 was published May 24, 2022

Using non-time-constant functions like memcmp to compare sensitive data can lead to information... Low Unreviewed

CVE-2019-14067 was published May 24, 2022

ZTE's PON terminal product is impacted by the access control vulnerability. Due to the system not... Low Unreviewed

CVE-2020-6868 was published May 24, 2022

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE)... Low Unreviewed

CVE-2020-5888 was published May 24, 2022

The review resource in Atlassian Fisheye and Crucible before version 4.8.1 allows remote... Low Unreviewed

CVE-2020-4013 was published May 24, 2022

VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware... Low Unreviewed

CVE-2020-3959 was published May 24, 2022

IBM Planning Analytics Local 2.0.0 through 2.0.9 is vulnerable to cross-site scripting. This... Low Unreviewed

CVE-2020-4306 was published May 24, 2022

IBM Jazz Reporting Service 6.0.6, 6.0.6.1, and 7.0 is vulnerable to cross-site scripting. This... Low Unreviewed

CVE-2020-4419 was published May 24, 2022

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,752 advisories