GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,372

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

132 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02... High Unreviewed

CVE-2019-3916 was published May 13, 2022

LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP... High Unreviewed

CVE-2018-16706 was published May 13, 2022

The File Manager (gollem) module 3.0.11 in Horde Groupware 5.2.21 allows remote attackers to... High Unreviewed

CVE-2017-15235 was published May 13, 2022

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an... Moderate Unreviewed

CVE-2018-0105 was published May 13, 2022

A vulnerability in the spam quarantine of Cisco Email Security Appliance and Cisco Content... Moderate Unreviewed

CVE-2018-0140 was published May 13, 2022

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an... Moderate Unreviewed

CVE-2018-0198 was published May 13, 2022

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an... Moderate Unreviewed

CVE-2018-0267 was published May 13, 2022

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an... Moderate Unreviewed

CVE-2018-0266 was published May 13, 2022

Pangea Communications Internet FAX ATA all Versions 3.1.8 and prior allow an attacker to bypass... High Unreviewed

CVE-2019-6551 was published May 13, 2022

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote,... High Unreviewed

CVE-2019-3917 was published May 13, 2022

An authentication bypass vulnerability on iBall Baton ADSL2+ Home Router FW_iB-LR7011A_1.0.2... Critical Unreviewed

CVE-2017-14244 was published May 13, 2022

Eloan V3.0 through 2018-09-20 allows remote attackers to list files via a direct request to the... Critical Unreviewed

CVE-2019-9552 was published May 13, 2022

Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software... Moderate Unreviewed

CVE-2015-2873 was published May 13, 2022

FlatNuke 2.5.3 allows remote attackers to cause a denial of service or obtain sensitive... Moderate Unreviewed

CVE-2005-1892 was published May 1, 2022

D-Link DSL-504T allows remote attackers to bypass authentication and gain privileges, such as... High Unreviewed

CVE-2005-1827 was published May 1, 2022

The RSS module in PostNuke 0.750 and 0.760RC2 and RC3 allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2005-1697 was published May 1, 2022

PostNuke 0.750 and 0.760RC3 allows remote attackers to obtain sensitive information via a direct... Moderate Unreviewed

CVE-2005-1698 was published May 1, 2022

Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct... Moderate Unreviewed

CVE-2005-1688 was published May 1, 2022

episodex guestbook allows remote attackers to bypass authentication and edit scripts via a direct... High Unreviewed

CVE-2005-1685 was published May 1, 2022

YusASP Web Asset Manager 1.0 allows remote attackers to gain privileges via a direct request to... High Unreviewed

CVE-2005-1668 was published May 1, 2022

Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users... High Unreviewed

CVE-2005-1654 was published May 1, 2022

MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files... Moderate Unreviewed

CVE-2002-1798 was published Apr 30, 2022

phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images... Moderate Unreviewed

CVE-2004-2257 was published Apr 29, 2022

Baal Smart Forms before 3.2 allows remote attackers to bypass authentication and obtain system... High Unreviewed

CVE-2004-2144 was published Apr 29, 2022

In Bender/ebee Charge Controllers in multiple versions are prone to unprotected data export.... High Unreviewed

CVE-2021-34588 was published Apr 28, 2022

Previous 1…56 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

132 advisories