Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,249
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,723
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

230 advisories

Loading
In IP-AK2 Access Control Panel Version 1.04.07 and prior, the integrated web server of the... Moderate Unreviewed
CVE-2019-13525 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2019-15282 was published May 24, 2022
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no... Moderate Unreviewed
CVE-2019-9529 was published May 24, 2022
An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. wan.htm can... Moderate Unreviewed
CVE-2019-17353 was published May 24, 2022
Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has... Moderate Unreviewed
CVE-2019-8292 was published May 24, 2022
In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the... Moderate Unreviewed
CVE-2019-13523 was published May 24, 2022
In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any... Moderate Unreviewed
CVE-2019-6652 was published May 24, 2022
Various Lexmark products have Incorrect Access Control (issue 2 of 2). Moderate Unreviewed
CVE-2019-9935 was published May 24, 2022
Various Lexmark products have Incorrect Access Control (issue 1 of 2). Moderate Unreviewed
CVE-2019-9934 was published May 24, 2022
An authentication bypass vulnerability was discovered in foreman-tasks before 0.15.7. Previously,... Moderate Unreviewed
CVE-2019-10198 was published May 24, 2022
Bypass lock protection in the Nextcloud Android app prior to version 3.6.1 allows accessing the... Moderate Unreviewed
CVE-2019-5451 was published May 24, 2022
IBM Robotic Process Automation with Automation Anywhere 11 could allow an attacker to obtain... Moderate Unreviewed
CVE-2019-4337 was published May 24, 2022
A vulnerability in the HTTPS proxy feature of Cisco Wide Area Application Services (WAAS)... Moderate Unreviewed
CVE-2019-1876 was published May 24, 2022
A vulnerability in the configuration import utility of Cisco Integrated Management Controller ... Moderate Unreviewed
CVE-2019-1629 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... Moderate Unreviewed
CVE-2019-1631 was published May 24, 2022
A flaw was found in the CloudForms web interface, versions 5.8 - 5.10, where the RSS feed URLs... Moderate Unreviewed
CVE-2017-15123 was published May 24, 2022
Several web pages provided SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11,... Moderate Unreviewed
CVE-2019-0312 was published May 24, 2022
The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated... Moderate Unreviewed
CVE-2019-9881 was published May 24, 2022
An unauthenticated attacker can obtain information about the Pydio 8.2.2 configuration including... Moderate Unreviewed
CVE-2019-10046 was published May 24, 2022
The Xiaomi M365 scooter 2019-02-12 before 1.5.1 allows spoofing of "suddenly accelerate" commands... Moderate Unreviewed
CVE-2019-12500 was published May 24, 2022
An exploitable improper access control vulnerability exists in the bluetooth low energy... Moderate Unreviewed
CVE-2019-5014 was published May 24, 2022
An incorrect access control exists in the Sony Photo Sharing Plus application in the firmware... Moderate Unreviewed
CVE-2019-10886 was published May 24, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29879 was published May 21, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29881 was published May 21, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... Moderate Unreviewed
CVE-2022-29877 was published May 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database