GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
62 advisories
Filter by severity
An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11...
High
Unreviewed
CVE-2021-20264
was published
May 24, 2022
Incorrect Privilege Assignment in GitHub repository hestiacp/hestiacp prior to 1.6.6.
High
Unreviewed
CVE-2022-2626
was published
Aug 6, 2022
A vulnerability in the user management roles of Cisco DNA Center could allow an authenticated,...
High
Unreviewed
CVE-2021-1303
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the container...
High
Unreviewed
CVE-2019-19349
was published
May 24, 2022
An insecure modification flaw in the /etc/passwd file was found in the redhat-sso-7 container. An...
High
Unreviewed
CVE-2020-10695
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the operator...
High
Unreviewed
CVE-2019-19352
was published
May 24, 2022
A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client...
High
Unreviewed
CVE-2018-1088
was published
May 13, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the operator...
High
Unreviewed
CVE-2019-19354
was published
May 24, 2022
A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an...
High
Unreviewed
CVE-2021-1594
was published
May 24, 2022
A vulnerability was found in SourceCodester Human Resource Management System 1.0 and classified...
High
Unreviewed
CVE-2022-3496
was published
Oct 14, 2022
The authentication mechanism used by poll workers to administer voting using the tested version...
High
Unreviewed
CVE-2022-1746
was published
Jun 25, 2022
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The...
High
Unreviewed
CVE-2023-5913
was published
Nov 8, 2023
A vulnerability classified as critical was found in SourceCodester Web-Based Student Clearance...
High
Unreviewed
CVE-2022-3436
was published
Oct 10, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has...
High
Unreviewed
CVE-2022-3549
was published
Oct 17, 2022
A vulnerability has been found in Facepay 1.0 and classified as critical. Affected by this...
High
Unreviewed
CVE-2022-4281
was published
Dec 5, 2022
A vulnerability in the CLI of Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and...
High
Unreviewed
CVE-2022-20681
was published
Apr 16, 2022
A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers...
High
Unreviewed
CVE-2024-20320
was published
Mar 13, 2024
It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID...
High
Unreviewed
CVE-2019-3843
was published
May 24, 2022
A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of...
High
Unreviewed
CVE-2019-11891
was published
May 24, 2022
A potential incorrect privilege assignment vulnerability exists in the app permission update API...
High
Unreviewed
CVE-2019-11893
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ansible...
High
Unreviewed
CVE-2019-19350
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the operator...
High
Unreviewed
CVE-2019-19353
was published
May 24, 2022
The WP Data Access plugin for WordPress is vulnerable to privilege escalation in versions up to,...
High
Unreviewed
CVE-2023-1874
was published
Apr 12, 2023
In JetBrains TeamCity before 2023.05.2 a token with limited permissions could be used to gain...
High
Unreviewed
CVE-2023-39173
was published
Jul 25, 2023
SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to...
High
Unreviewed
CVE-2020-10129
was published
Sep 6, 2023
ProTip!
Advisories are also available from the
GraphQL API