GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,576
Composer 4,462
Erlang 33
GitHub Actions 22
Go 2,159
Maven 5,338
npm 3,820
NuGet 696
pip 3,502
Pub 12
RubyGems 903
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,507

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

461 advisories

Filter by severity

Sort by

Least recently updated

Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote... Moderate Unreviewed

CVE-2018-6040 was published May 13, 2022

In webERP 4.15, Z_CreateCompanyTemplateFile.php has Incorrect Access Control, leading to the... Moderate Unreviewed

CVE-2018-20420 was published May 13, 2022

Improper directory permissions in the installer for the Intel(R) System Defense Utility (all... Moderate Unreviewed

CVE-2018-3705 was published May 13, 2022

An issue was discovered in DouCo DouPHP 1.5 20181221. \install\index.php allows a reload of the... Moderate Unreviewed

CVE-2018-20567 was published May 13, 2022

Incorrect Access Controls of Security Officer (SO) in PKCS11 R2 provider that ships with the... Moderate Unreviewed

CVE-2018-19589 was published May 13, 2022

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... Moderate Unreviewed

CVE-2018-19072 was published May 13, 2022

Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before... Moderate Unreviewed

CVE-2018-12223 was published May 13, 2022

Insufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1... Moderate Unreviewed

CVE-2018-12200 was published May 13, 2022

Service works could inappropriately gain access to cross origin audio in Media in Google Chrome... Moderate Unreviewed

CVE-2018-18352 was published May 13, 2022

Remote frame navigations was incorrectly permitted to local resources in Blink in Google Chrome... Moderate Unreviewed

CVE-2018-18349 was published May 13, 2022

Improper access control in core module lead XBL_LOADER performs the ZI region clear for QTEE... Moderate Unreviewed

CVE-2018-11951 was published May 13, 2022

An issue was discovered in Oracle WebCenter Interaction Portal 10.3.3. The ASP.NET_SessionID... Moderate Unreviewed

CVE-2018-16958 was published May 13, 2022

An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions... Moderate Unreviewed

CVE-2018-1354 was published May 13, 2022

The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access... Moderate Unreviewed

CVE-2018-14934 was published May 13, 2022

protected/apps/admin/controller/photoController.php in YXcms 1.4.7 allows remote attackers to... Moderate Unreviewed

CVE-2018-13025 was published May 13, 2022

WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings... Moderate Unreviewed

CVE-2018-1000510 was published May 13, 2022

Incorrect access controls in ajaxdata.php in TerraMaster TOS version 3.1.03 allow attackers to... Moderate Unreviewed

CVE-2018-13355 was published May 13, 2022

A vulnerability where a WebExtension can run content scripts in disallowed contexts following... Moderate Unreviewed

CVE-2018-12396 was published May 13, 2022

In Apache Impala (incubating) before 2.10.0, a malicious user with "ALTER" permissions on an... Moderate Unreviewed

CVE-2017-9792 was published May 13, 2022

Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that... Moderate Unreviewed

CVE-2018-1000080 was published May 13, 2022

The default privileges for the running service Normand Service Manager in Beckman Coulter Remisol... Moderate Unreviewed

CVE-2022-26238 was published Oct 7, 2022

FusionCompute V100R005C00 and V100R005C10 have an improper authorization vulnerability due to... Moderate Unreviewed

CVE-2017-8158 was published May 13, 2022

The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1... Moderate Unreviewed

CVE-2017-8391 was published May 13, 2022

Nessus 6.10.x before 6.10.5 was found to be vulnerable to a local denial of service condition due... Moderate Unreviewed

CVE-2017-7849 was published May 13, 2022

The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices... Moderate Unreviewed

CVE-2017-9494 was published May 13, 2022

Previous 1 2 … 7 8 9 10 11 … 18 19 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

461 advisories