GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,737
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,755

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

437 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in the Widgets extension through 1.4.0 for MediaWiki. Improper title... Moderate Unreviewed

CVE-2020-9382 was published May 24, 2022

An insecure modification vulnerability in the /etc/passwd file was found in all versions of... Moderate Unreviewed

CVE-2020-1704 was published May 24, 2022

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx... Moderate Unreviewed

CVE-2020-10868 was published May 24, 2022

Improper access control vulnerability in ESConfigTool.exe in ENS for Windows all current versions... Moderate Unreviewed

CVE-2020-7263 was published May 24, 2022

GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on particular group settings, it... Moderate Unreviewed

CVE-2020-10088 was published May 24, 2022

An issue was discovered in Deskpro before 2019.8.0. This product enables administrators to modify... Moderate Unreviewed

CVE-2020-11467 was published May 24, 2022

An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on... Moderate Unreviewed

CVE-2020-11107 was published May 24, 2022

The file management interface of iCatch DVR contains broken access control which allows the... Moderate Unreviewed

CVE-2020-10513 was published May 24, 2022

An issue was discovered in the "Ultimate Addons for Elementor" plugin before 1.24.2 for WordPress... Moderate Unreviewed

CVE-2020-13125 was published May 24, 2022

An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys... Moderate Unreviewed

CVE-2019-7246 was published May 24, 2022

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce... Moderate Unreviewed

CVE-2020-1056 was published May 24, 2022

In Pydio Cells 2.0.4, once an authenticated user shares a file selecting the create a public link... Moderate Unreviewed

CVE-2020-12848 was published May 24, 2022

Improper access control in Groupfolders app 4.0.3 allowed to delete hidden directories when when... Moderate Unreviewed

CVE-2020-8153 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. Changes to e... Moderate Unreviewed

CVE-2019-20879 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows a... Moderate Unreviewed

CVE-2019-20875 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.10.0, 5.9.1, 5.8.2, and 4.10.9. A non... Moderate Unreviewed

CVE-2019-20869 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. Users can... Moderate Unreviewed

CVE-2019-20876 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.8.0. It allows attackers to partially... Moderate Unreviewed

CVE-2019-20884 was published May 24, 2022

An access issue was addressed with improved access restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2020-9851 was published May 24, 2022

An issue was discovered in Mattermost Server before 5.7.1, 5.6.4, 5.5.3, and 4.10.6. It does not... Moderate Unreviewed

CVE-2019-20887 was published May 24, 2022

The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write... Moderate Unreviewed

CVE-2017-15906 was published May 13, 2022

Opencast has Incorrect Permission Assignment Moderate

CVE-2017-1000221 was published for org.opencastproject:opencast-kernel (Maven) May 13, 2022

A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro... Moderate Unreviewed

CVE-2020-8602 was published May 24, 2022

OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories. Moderate Unreviewed

CVE-2020-24716 was published May 24, 2022

ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via... Moderate Unreviewed

CVE-2020-24028 was published May 24, 2022

Previous 1 2 3 4 5 6 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

437 advisories