Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,340
Erlang
31
GitHub Actions
22
Go
2,101
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
885
Swift
37
Unreviewed advisories
All unreviewed
5,000+

421 advisories

Loading
An elevation of privilege vulnerability exists when the Windows Shell fails to validate folder... High Unreviewed
CVE-2019-1053 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1064 was published May 24, 2022
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates... High Unreviewed
CVE-2019-1069 was published May 24, 2022
deepin-clone before 1.1.3 uses a predictable path /tmp/.deepin-clone/mount/<block-dev-basename>... High Unreviewed
CVE-2019-13226 was published May 24, 2022
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v0.9.8 beta ... High Unreviewed
CVE-2019-12571 was published May 24, 2022
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux... High Unreviewed
CVE-2019-12573 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1129 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1130 was published May 24, 2022
b3log Wide unauthenticated file access High
CVE-2019-13915 was published for github.com/b3log/wide (Go) May 24, 2022
UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid... High Unreviewed
CVE-2019-13382 was published May 24, 2022
Podman Path Traversal Vulnerability leads to arbitrary file read/write High
CVE-2019-10152 was published for github.com/containers/podman (Go) May 24, 2022
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code... High Unreviewed
CVE-2019-1188 was published May 24, 2022
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with... High Unreviewed
CVE-2018-1631 was published May 24, 2022
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with... High Unreviewed
CVE-2018-1633 was published May 24, 2022
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with... High Unreviewed
CVE-2018-1630 was published May 24, 2022
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with... High Unreviewed
CVE-2018-1632 was published May 24, 2022
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with... High Unreviewed
CVE-2018-1634 was published May 24, 2022
An issue was discovered in Avira Free Security Suite 10. The permissive access rights on the... High Unreviewed
CVE-2019-11396 was published May 24, 2022
A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2019-12672 was published May 24, 2022
A denial of service vulnerability exists when Windows improperly handles hard links, aka ... High Unreviewed
CVE-2019-1317 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1315 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1339 was published May 24, 2022
It was found that rpm did not properly handle RPM installations when a destination path was a... High Unreviewed
CVE-2017-7500 was published May 24, 2022
Privilege escalation flaws were found in the Red Hat initialization scripts of PostgreSQL. An... High Unreviewed
CVE-2017-15097 was published May 24, 2022
Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files... High Unreviewed
CVE-2019-19191 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database