Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

245 advisories

Loading
PingID Desktop prior to the latest released version 1.7.4 contains a vulnerability that can be... Moderate Unreviewed
CVE-2022-40725 was published Apr 25, 2023
An issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. The... Moderate Unreviewed
CVE-2023-27571 was published Apr 15, 2023
Diebold Nixdorf ProCash 2100xe USB ATMs running Wincor Probase version 1.1.30 do not encrypt,... Moderate Unreviewed
CVE-2020-9062 was published May 24, 2022
A vulnerability in the API of Cisco Application Services Engine Software could allow an... Moderate Unreviewed
CVE-2020-3333 was published May 24, 2022
A vulnerability in the key store of Cisco Application Services Engine Software could allow an... Moderate Unreviewed
CVE-2020-3335 was published May 24, 2022
Anviz access control devices expose private Information (pin code and name) by allowing remote... Moderate Unreviewed
CVE-2019-12390 was published May 24, 2022
Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and... Moderate Unreviewed
CVE-2019-5643 was published May 24, 2022
In IP-AK2 Access Control Panel Version 1.04.07 and prior, the integrated web server of the... Moderate Unreviewed
CVE-2019-13525 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2019-15282 was published May 24, 2022
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no... Moderate Unreviewed
CVE-2019-9529 was published May 24, 2022
In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the... Moderate Unreviewed
CVE-2019-13523 was published May 24, 2022
Various Lexmark products have Incorrect Access Control (issue 1 of 2). Moderate Unreviewed
CVE-2019-9934 was published May 24, 2022
Various Lexmark products have Incorrect Access Control (issue 2 of 2). Moderate Unreviewed
CVE-2019-9935 was published May 24, 2022
An authentication bypass vulnerability was discovered in foreman-tasks before 0.15.7. Previously,... Moderate Unreviewed
CVE-2019-10198 was published May 24, 2022
A vulnerability in the HTTPS proxy feature of Cisco Wide Area Application Services (WAAS)... Moderate Unreviewed
CVE-2019-1876 was published May 24, 2022
A vulnerability in the configuration import utility of Cisco Integrated Management Controller ... Moderate Unreviewed
CVE-2019-1629 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... Moderate Unreviewed
CVE-2019-1631 was published May 24, 2022
Several web pages provided SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11,... Moderate Unreviewed
CVE-2019-0312 was published May 24, 2022
An unauthenticated attacker can obtain information about the Pydio 8.2.2 configuration including... Moderate Unreviewed
CVE-2019-10046 was published May 24, 2022
The Xiaomi M365 scooter 2019-02-12 before 1.5.1 allows spoofing of "suddenly accelerate" commands... Moderate Unreviewed
CVE-2019-12500 was published May 24, 2022
An incorrect access control exists in the Sony Photo Sharing Plus application in the firmware... Moderate Unreviewed
CVE-2019-10886 was published May 24, 2022
In NetworkManager 0.9.2.0, when a new wireless network was created with WPA/WPA2 security in... Moderate Unreviewed
CVE-2012-2736 was published Apr 23, 2022
** DISPUTED ** A Missing Authentication for Critical Function issue affecting the HTTP service... Moderate Unreviewed
CVE-2023-6949 was published Apr 2, 2024
** DISPUTED ** BIRD through 2.0.7 does not provide functionality for password authentication of... Moderate Unreviewed
CVE-2021-26928 was published May 24, 2022
Improper Authentication in Apache ActiveMQ Moderate
CVE-2020-13920 was published for org.apache.activemq:activemq-parent (Maven) Feb 9, 2022
sunSUNQ
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database