GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
283 advisories
Filter by severity
Insufficiently protected credentials in the Intel(R) QAT for Linux before version 1.7.l.4.10.0...
High
Unreviewed
CVE-2020-12333
was published
May 24, 2022
Stored XSS in InterMind iMind Server through 3.13.65 allows any user to hijack another user's...
High
Unreviewed
CVE-2020-25399
was published
May 24, 2022
RVToolsPasswordEncryption.exe in RVTools 4.0.6 allows users to encrypt passwords to be used in...
High
Unreviewed
CVE-2020-27688
was published
May 24, 2022
A logic error in Nextcloud Server 19.0.0 caused a plaintext storage of the share password when it...
High
Unreviewed
CVE-2020-8183
was published
May 24, 2022
** DISPUTED ** SonarQube 8.4.2.36762 allows remote attackers to discover cleartext SMTP, SVN, and...
High
Unreviewed
CVE-2020-27986
was published
May 24, 2022
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi...
High
Unreviewed
CVE-2020-27888
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26904
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26903
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26906
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26905
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26900
was published
May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects...
High
Unreviewed
CVE-2020-26897
was published
May 24, 2022
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The physical UART debug port...
High
Unreviewed
CVE-2020-15483
was published
May 24, 2022
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an...
High
Unreviewed
CVE-2020-15482
was published
May 24, 2022
An issue was discovered on Swisscom Internet Box 2, Internet Box Standard, Internet Box Plus...
High
Unreviewed
CVE-2020-16134
was published
May 24, 2022
On Aspire-derived NEC PBXes, including all versions of SV8100 devices, a set of documented,...
High
Unreviewed
CVE-2019-20033
was published
May 24, 2022
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local attacker...
High
Unreviewed
CVE-2020-3180
was published
May 24, 2022
An issue was discovered on Zolo Halo devices via the Linkplay firmware. There is Zolo Halo LAN...
High
Unreviewed
CVE-2019-15311
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0. It mishandles brute-force attacks...
High
Unreviewed
CVE-2019-20881
was published
May 24, 2022
Bond JetSelect (all versions) has an issue in the Java class (ENCtool.jar) and corresponding...
High
Unreviewed
CVE-2019-13022
was published
May 24, 2022
In IQrouter through 3.3.1, there is a root user without a password, which allows attackers to...
High
Unreviewed
CVE-2020-11965
was published
May 24, 2022
Iteris Vantage Velocity Field Unit 2.3.1 and 2.4.2 devices have two users that are not documented...
High
Unreviewed
CVE-2020-9023
was published
May 24, 2022
Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102...
High
Unreviewed
CVE-2019-19843
was published
May 24, 2022
The RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance products prior to...
High
Unreviewed
CVE-2019-18572
was published
May 24, 2022
Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable...
High
Unreviewed
CVE-2019-10210
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API