Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,662
Maven
5,000+
npm
4,289
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,752 advisories

Loading
An information disclosure vulnerability exists when the Windows kernel improperly handles objects... Low Unreviewed
CVE-2020-1072 was published May 24, 2022
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka ... Low Unreviewed
CVE-2020-1076 was published May 24, 2022
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send... Low Unreviewed
CVE-2019-5302 was published May 24, 2022
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting.... Low Unreviewed
CVE-2020-4298 was published May 24, 2022
Studio in Open edX Ironwood 2.5 allows users to upload SVG files via the "Content>File Uploads"... Low Unreviewed
CVE-2020-13145 was published May 24, 2022
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in... Low Unreviewed
CVE-2020-13890 was published May 24, 2022
Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This... Low Unreviewed
CVE-2017-18712 was published May 24, 2022
Certain NETGEAR devices are affected by incorrect configuration of security settings. This... Low Unreviewed
CVE-2018-21229 was published May 24, 2022
IBM Security Guardium 11.1 uses weaker than expected cryptographic algorithms that could allow an... Low Unreviewed
CVE-2020-4191 was published May 24, 2022
Huawei P20 smartphones with versions earlier than 10.0.0.156(C00E156R1P4) have an improper... Low Unreviewed
CVE-2020-9073 was published May 24, 2022
IBM MaaS360 6.82 could allow a user with pysical access to the device to crash the application... Low Unreviewed
CVE-2020-4353 was published May 24, 2022
rConfig 3.9.4 is vulnerable to reflected XSS. The devicemgmnt.php file improperly validates user... Low Unreviewed
CVE-2020-12256 was published May 24, 2022
An Ubuntu-specific modification to Pulseaudio to provide security mediation for Snap-packaged... Low Unreviewed
CVE-2020-11931 was published May 24, 2022
Submitty through 20.04.01 allows XSS via upload of an SVG document, as demonstrated by an attack... Low Unreviewed
CVE-2020-12882 was published May 24, 2022
An issue was discovered on Samsung mobile devices with Q(10.0) software. The Lockscreen feature... Low Unreviewed
CVE-2020-13837 was published May 24, 2022
An improper authorization in the receiver component of Email.Product: AndroidVersions: Android... Low Unreviewed
CVE-2020-0090 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D3600... Low Unreviewed
CVE-2018-21136 was published May 24, 2022
Anchor 0.12.7 allows admins to cause XSS via crafted post content. Low Unreviewed
CVE-2020-12071 was published May 24, 2022
In setHideSensitive of NotificationStackScrollLayout.java, there is a possible disclosure of... Low Unreviewed
CVE-2020-0092 was published May 24, 2022
JetBrains Space through 2020-04-22 allows stored XSS in Chats. Low Unreviewed
CVE-2020-11416 was published May 24, 2022
The backup function in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway... Low Unreviewed
CVE-2019-19105 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects WAC505... Low Unreviewed
CVE-2018-21129 was published May 24, 2022
VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware... Low Unreviewed
CVE-2020-3958 was published May 24, 2022
Honor 9X smartphones with versions earlier than 9.1.1.172(C00E170R8P1) have an improper... Low Unreviewed
CVE-2020-1833 was published May 24, 2022
Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24,... Low Unreviewed
CVE-2017-18780 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database