GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
100 advisories
Filter by severity
Download of code without integrity check vulnerability in NEXACRO14 Runtime ActiveX control of...
High
Unreviewed
CVE-2020-7874
was published
May 24, 2022
Download of code without integrity check vulnerability in ActiveX control of Younglimwon Co., Ltd...
Critical
Unreviewed
CVE-2020-7873
was published
May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur...
Moderate
Unreviewed
CVE-2021-30657
was published
May 24, 2022
This issue was addressed with improved handling of file metadata. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2021-30658
was published
May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur...
Moderate
Unreviewed
CVE-2021-30669
was published
May 24, 2022
In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC...
High
Unreviewed
CVE-2021-38588
was published
May 24, 2022
Tencent GameLoop before 4.1.21.90 downloaded updates over an insecure HTTP connection. A...
High
Unreviewed
CVE-2021-33879
was published
May 24, 2022
An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint...
Moderate
Unreviewed
CVE-2021-3485
was published
May 24, 2022
An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check,...
High
Unreviewed
CVE-2021-27574
was published
May 24, 2022
AppImage appimaged before 1.0.3 does not properly check whether a downloaded file is a valid...
Moderate
Unreviewed
CVE-2020-25266
was published
May 24, 2022
Jenkins Plugin Installation Manager Tool did not verify plugin downloads
Critical
CVE-2020-2320
was published
for
io.jenkins.plugin-management:plugin-management-parent-pom
(Maven)
May 24, 2022
Barco wePresent WiPG-1600W devices download code without an Integrity Check. Affected Version(s):...
Critical
Unreviewed
CVE-2020-28332
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to...
Moderate
Unreviewed
CVE-2020-1576
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly...
Moderate
Unreviewed
CVE-2020-1595
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to...
High
Unreviewed
CVE-2020-1452
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to...
High
Unreviewed
CVE-2020-1453
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to...
Moderate
Unreviewed
CVE-2020-1210
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to...
High
Unreviewed
CVE-2020-1200
was published
May 24, 2022
An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message...
High
Unreviewed
CVE-2020-9759
was published
May 24, 2022
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0)...
Moderate
Unreviewed
CVE-2020-8468
was published
May 24, 2022
RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where...
High
Unreviewed
CVE-2019-3977
was published
May 24, 2022
The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development...
High
Unreviewed
CVE-2019-9534
was published
May 24, 2022
Cargo prior to Rust 1.26.0 may download the wrong dependency
High
CVE-2019-16760
was published
for
cargo
(Rust)
May 24, 2022
Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN...
High
Unreviewed
CVE-2019-13534
was published
May 24, 2022
Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier versions contains a vulnerability that...
High
Unreviewed
CVE-2019-12809
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API