Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,660
Maven
5,000+
npm
4,289
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,751 advisories

Loading
Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0... Low Unreviewed
CVE-2017-18785 was published May 24, 2022
testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and... Low Unreviewed
CVE-2020-11949 was published May 24, 2022
CMS Made Simple through 2.2.14 allows XSS via a crafted File Picker profile name. Low Unreviewed
CVE-2020-13660 was published May 24, 2022
Certain NETGEAR devices are affected by administrative password disclosure. This affects D6220... Low Unreviewed
CVE-2017-18777 was published May 24, 2022
Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This... Low Unreviewed
CVE-2017-18752 was published May 24, 2022
NETGEAR ReadyNAS OS 6 devices, running ReadyNAS OS versions prior to 6.8.0 are affected by stored... Low Unreviewed
CVE-2017-18816 was published May 24, 2022
NETGEAR ReadyNAS OS 6 devices running ReadyNAS OS versions prior to 6.8.0 are affected by stored... Low Unreviewed
CVE-2017-18813 was published May 24, 2022
qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A... Low Unreviewed
CVE-2020-3812 was published May 24, 2022
IBM API Connect V2018.4.1.0 through 2018.4.1.10 could allow a remote attacker to hijack the... Low Unreviewed
CVE-2020-4195 was published May 24, 2022
Composr 10.0.30 allows Persistent XSS via a Usergroup name under the Security configuration. Low Unreviewed
CVE-2020-8789 was published May 24, 2022
SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not... Low Unreviewed
CVE-2020-6257 was published May 24, 2022
In onShowingStateChanged of KeyguardStateMonitor.java, there is a possible inappropriate read due... Low Unreviewed
CVE-2020-0104 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15,... Low Unreviewed
CVE-2017-18827 was published May 24, 2022
Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15,... Low Unreviewed
CVE-2017-18839 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2017-18845 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2017-18843 was published May 24, 2022
It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk... Low Unreviewed
CVE-2020-11932 was published May 24, 2022
An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross... Low Unreviewed
CVE-2020-8155 was published May 24, 2022
Stored XSS in Tenable.Sc before 5.14.0 could allow an authenticated remote attacker to craft a... Low Unreviewed
CVE-2020-5737 was published May 24, 2022
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a... Low Unreviewed
CVE-2020-1104 was published May 24, 2022
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a... Low Unreviewed
CVE-2020-1107 was published May 24, 2022
A Denial Of Service vulnerability exists when Connected User Experiences and Telemetry Service... Low Unreviewed
CVE-2020-1084 was published May 24, 2022
In authorize_enroll of the FPC IRIS TrustZone app, there is a possible out of bounds read due to... Low Unreviewed
CVE-2020-0077 was published May 24, 2022
fishProtocol::establishConnection in fish/fish.cpp in KDE kio-extras through 20.04.0 makes a... Low Unreviewed
CVE-2020-12755 was published May 24, 2022
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9... Low Unreviewed
CVE-2020-7265 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database