Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,268
Erlang
31
GitHub Actions
21
Go
2,043
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

952 advisories

Loading
The bootloader of the homee Brain Cube V2 through 2.23.0 allows attackers with physical access to... High Unreviewed
CVE-2019-16258 was published May 24, 2022
Zoho ManageEngine Applications Manager 14590 and before allows a remote unauthenticated attacker... Moderate Unreviewed
CVE-2019-19799 was published May 24, 2022
Zoho ManageEngine Desktop Central allows unauthenticated users to access PDFGenerationServlet,... Moderate Unreviewed
CVE-2020-8509 was published May 24, 2022
An issue was discovered in Squid through 4.7. When handling requests from users, Squid checks its... High Unreviewed
CVE-2019-12524 was published May 24, 2022
A remote authenticated authorization-bypass vulnerability in Wowza Streaming Engine 4.7.8 (build... High Unreviewed
CVE-2020-9004 was published May 24, 2022
CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to... Moderate Unreviewed
CVE-2020-10264 was published May 24, 2022
auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a... Moderate Unreviewed
CVE-2020-10807 was published May 24, 2022
The web server in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway allows... High Unreviewed
CVE-2019-19104 was published May 24, 2022
Moxa Service in Moxa NPort 5150A firmware version 1.5 and earlier allows attackers to obtain... Moderate Unreviewed
CVE-2020-12117 was published May 24, 2022
SAP Solution Manager (Diagnostics Agent), version 7.2, does not perform the authentication check... Moderate Unreviewed
CVE-2020-6235 was published May 24, 2022
An issue was discovered on WAVLINK WL-WN579G3 M79X3.V5030.180719, WL-WN575A3 RPT75A3.V4300.180801... Moderate Unreviewed
CVE-2020-12266 was published May 24, 2022
An unprotected logging route may allow an attacker to write endless log statements into the... Moderate Unreviewed
CVE-2020-10641 was published May 24, 2022
An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. A page is exposed... Moderate Unreviewed
CVE-2020-10972 was published May 24, 2022
An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices, affecting /cgi-bin... Moderate Unreviewed
CVE-2020-10973 was published May 24, 2022
An issue was discovered on Wavlink WL-WN579G3 - M79X3.V5030.180719 and WL-WN575A3 - RPT75A3.V4300... Moderate Unreviewed
CVE-2020-10974 was published May 24, 2022
It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path... Moderate Unreviewed
CVE-2020-10754 was published May 24, 2022
An issue was discovered in BACKCLICK Professional 5.9.63. User authentication for accessing the... Critical Unreviewed
CVE-2022-44001 was published Nov 18, 2022
A vulnerability has been identified in LOGO!8 BM (incl. SIPLUS variants) (All versions). The... Moderate Unreviewed
CVE-2020-7589 was published May 24, 2022
The Micro Air Vehicle Link (MAVLink) protocol presents no authentication mechanism on its version... High Unreviewed
CVE-2020-10282 was published May 24, 2022
Asus RT-N12E 2.0.0.39 is affected by an incorrect access control vulnerability. Through system... High Unreviewed
CVE-2020-23648 was published Oct 19, 2022
openSIS through 7.4 has Incorrect Access Control. Moderate Unreviewed
CVE-2020-13382 was published May 24, 2022
D-link DSL-2750U ISL2750UEME3.V1E devices allow approximately 90 seconds of access to the control... Moderate Unreviewed
CVE-2020-13150 was published May 24, 2022
SAP NetWeaver AS JAVA (LM Configuration Wizard), versions - 7.30, 7.31, 7.40, 7.50, does not... High Unreviewed
CVE-2020-6287 was published May 24, 2022
A vulnerability has been identified in SCALANCE X-200RNA switch family (All versions), SCALANCE X... High Unreviewed
CVE-2019-13933 was published May 24, 2022
In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize... Moderate Unreviewed
CVE-2020-12028 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database