GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,996
Composer 4,296
Erlang 31
GitHub Actions 21
Go 2,063
Maven 5,239
npm 3,744
NuGet 668
pip 3,424
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,605

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

333 advisories

Filter by severity

Sort by

Least recently updated

Multiple Version of TRUMPF TruTops products expose a service function without necessary... Critical Unreviewed

CVE-2022-1300 was published May 3, 2022

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Critical Unreviewed

CVE-2022-1388 was published May 6, 2022

Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to bypass... Critical Unreviewed

CVE-2015-2888 was published May 13, 2022

A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable... Critical Unreviewed

CVE-2017-2637 was published May 13, 2022

A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco... Critical Unreviewed

CVE-2018-0127 was published May 13, 2022

Missing authentication and improper input validation in KERUI Wifi Endoscope Camera (YPC99) allow... Critical Unreviewed

CVE-2018-13114 was published May 13, 2022

The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and... Critical Unreviewed

CVE-2018-19248 was published May 13, 2022

A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption... Critical Unreviewed

CVE-2018-6223 was published May 13, 2022

SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for... Critical Unreviewed

CVE-2019-0246 was published May 13, 2022

Under certain circumstances, SAP HANA Extended Application Services, advanced model (XS advanced)... Critical Unreviewed

CVE-2019-0261 was published May 13, 2022

The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request.... Critical Unreviewed

CVE-2019-10039 was published May 13, 2022

The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request.... Critical Unreviewed

CVE-2019-10040 was published May 13, 2022

The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request.... Critical Unreviewed

CVE-2019-10041 was published May 13, 2022

An issue was discovered on D-Link DIR-878 1.12B01 devices. Because strncpy is misused, there is a... Critical Unreviewed

CVE-2019-9125 was published May 13, 2022

Phoenix Contact ILC 131 ETH, ILC 131 ETH/XC, ILC 151 ETH, ILC 151 ETH/XC, ILC 171 ETH 2TX, ILC... Critical Unreviewed

CVE-2019-9201 was published May 13, 2022

diag_tool.cgi on DASAN H660RM GPON routers with firmware 1.03-0022 lacks any authorization check,... Critical Unreviewed

CVE-2019-9974 was published May 13, 2022

Registers used to store Modbus values can be read and written from the web interface without... Critical Unreviewed

CVE-2019-6533 was published May 13, 2022

AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly... Critical Unreviewed

CVE-2019-6543 was published May 13, 2022

The TP-LINK EAP Controller is TP-LINK's software for remotely controlling wireless access point... Critical Unreviewed

CVE-2018-5393 was published May 13, 2022

A vulnerability has been identified in Desigo Automation Controllers Products and Desigo Operator... Critical Unreviewed

CVE-2018-4834 was published May 13, 2022

Pluto Safety PLC Gateway Ethernet devices ABB GATE-E1 and GATE-E2 all versions do not allow... Critical Unreviewed

CVE-2018-18995 was published May 13, 2022

In Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100, ports 30001/TCP to... Critical Unreviewed

CVE-2018-10635 was published May 13, 2022

A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite... Critical Unreviewed

CVE-2018-0377 was published May 13, 2022

A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow... Critical Unreviewed

CVE-2018-0376 was published May 13, 2022

A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an... Critical Unreviewed

CVE-2018-0374 was published May 13, 2022

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

333 advisories