Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,483
Maven
5,000+
npm
4,104
NuGet
734
pip
3,917
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

291 advisories

Loading
Several web pages provided SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11,... Moderate Unreviewed
CVE-2019-0312 was published May 24, 2022
The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated... Moderate Unreviewed
CVE-2019-9881 was published May 24, 2022
An unauthenticated attacker can obtain information about the Pydio 8.2.2 configuration including... Moderate Unreviewed
CVE-2019-10046 was published May 24, 2022
The Xiaomi M365 scooter 2019-02-12 before 1.5.1 allows spoofing of "suddenly accelerate" commands... Moderate Unreviewed
CVE-2019-12500 was published May 24, 2022
An exploitable improper access control vulnerability exists in the bluetooth low energy... Moderate Unreviewed
CVE-2019-5014 was published May 24, 2022
An incorrect access control exists in the Sony Photo Sharing Plus application in the firmware... Moderate Unreviewed
CVE-2019-10886 was published May 24, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29881 was published May 21, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29877 was published May 21, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29879 was published May 21, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29883 was published May 21, 2022
The ListView control in the Client GUI (AClient.exe) in Symantec Altiris Deployment Solution 6.x... Moderate Unreviewed
CVE-2008-6827 was published May 17, 2022
An attacker with physical access to a BrilliantTS FUZE card (MCU firmware 0.1.73, BLE firmware 0... Moderate Unreviewed
CVE-2018-9119 was published May 14, 2022
Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows... Moderate Unreviewed
CVE-2018-16758 was published May 13, 2022
The 'Find Phone' function in Nice smartphones with software versions earlier before Nice... Moderate Unreviewed
CVE-2017-2708 was published May 13, 2022
Weak access controls in the Device Logout functionality on the TP-Link TL-SG108E v1.0.0 allow... Moderate Unreviewed
CVE-2017-17747 was published May 13, 2022
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks... Moderate Unreviewed
CVE-2016-9496 was published May 13, 2022
A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that... Moderate Unreviewed
CVE-2017-6872 was published May 13, 2022
A vulnerability in the Graphite web interface of the Policy and Charging Rules Function (PCRF) of... Moderate Unreviewed
CVE-2018-15466 was published May 13, 2022
The browser native UI in Google Chrome before 17.0.963.83 does not require user confirmation... Moderate Unreviewed
CVE-2011-3055 was published May 13, 2022
With X-Pack installed, Kibana versions 5.0.0 and 5.0.1 were not properly authenticating requests... Moderate Unreviewed
CVE-2016-10364 was published May 13, 2022
IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 could allow an attacker to... Moderate Unreviewed
CVE-2018-1757 was published May 13, 2022
The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and... Moderate Unreviewed
CVE-2019-6538 was published May 13, 2022
The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for... Moderate Unreviewed
CVE-2014-2590 was published May 13, 2022
The Popup by Supsystic WordPress plugin before 1.10.9 does not have any authentication and... Moderate Unreviewed
CVE-2022-0424 was published May 10, 2022
On all versions 1.3.x (fixed in 1.4.0) NGINX Service Mesh control plane endpoints are exposed to... Moderate Unreviewed
CVE-2022-27495 was published May 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database