GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,710 advisories
Filter by severity
Missing permission check in Jenkins Rundeck Plugin
Moderate
CVE-2019-10455
was published
for
org.jenkins-ci.plugins:rundeck
(Maven)
May 24, 2022
Jenkins CRX Content Package Deployer Plugin subject to credentials enumeration via Missing Authorization
Moderate
CVE-2019-10439
was published
for
org.jenkins-ci.plugins:crx-content-package-deployer
(Maven)
May 24, 2022
Missing permission checks in Google Kubernetes Engine Jenkins Plugin
Moderate
CVE-2019-10445
was published
for
org.jenkins-ci.plugins:google-kubernetes-engine
(Maven)
May 24, 2022
Jenkins iceScrum Plugin vulnerable to Missing Authorization
Moderate
CVE-2019-10442
was published
for
org.jenkins-ci.plugins:icescrum
(Maven)
May 24, 2022
Jenkins CRX Content Package Deployer Plugin subject to Missing Authorization
Moderate
CVE-2019-10438
was published
for
org.jenkins-ci.plugins:crx-content-package-deployer
(Maven)
May 24, 2022
In ScreenRotationAnimation of ScreenRotationAnimation.java, there is a possible capture of a...
Moderate
Unreviewed
CVE-2019-2110
was published
May 24, 2022
SAP NetWeaver Process Integration (B2B Toolkit), before versions 1.0 and 2.0, does not perform...
Moderate
Unreviewed
CVE-2019-0367
was published
May 24, 2022
In the settings UI, there is a possible spoofing vulnerability due to a missing permission check....
Moderate
Unreviewed
CVE-2019-9380
was published
May 24, 2022
In the Wallpaper Manager service, there is a possible information disclosure due to a missing...
Moderate
Unreviewed
CVE-2019-9323
was published
May 24, 2022
MediaWiki information disclosure
Moderate
CVE-2019-16738
was published
for
mediawiki/core
(Composer)
May 24, 2022
Missing permission check in Jenkins Project Inheritance Plugin
Moderate
CVE-2019-10409
was published
for
hudson.plugins:project-inheritance
(Maven)
May 24, 2022
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before...
Moderate
Unreviewed
CVE-2019-8445
was published
May 24, 2022
Little Snitch versions 4.3.0 to 4.3.2 have a local privilege escalation vulnerability in their...
Moderate
Unreviewed
CVE-2019-13013
was published
May 24, 2022
In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a...
Moderate
Unreviewed
CVE-2019-2137
was published
May 24, 2022
The Rank Math SEO plugin 1.0.27 for WordPress allows non-admin users to reset the settings via...
Moderate
Unreviewed
CVE-2019-14786
was published
May 24, 2022
Missing permission check in Jenkins Relution Enterprise Appstore Publisher Plugin
Moderate
CVE-2019-10389
was published
for
org.jenkins-ci.plugins:relution-publisher
(Maven)
May 24, 2022
Missing permission check in Jenkins XL TestView Plugin
Moderate
CVE-2019-10387
was published
for
com.xebialabs.xlt.ci:xltestview-plugin
(Maven)
May 24, 2022
Jenkins JClouds Plugin missing permission check
Moderate
CVE-2019-10369
was published
for
org.jenkins-ci.plugins:jclouds-jenkins
(Maven)
May 24, 2022
Missing permission check in Jenkins Avatar Plugin
Moderate
CVE-2019-10377
was published
for
net.hurstfrost.jenkins:avatar
(Maven)
May 24, 2022
Moodle Ability to delete glossary entries that belong to another glossary
Moderate
CVE-2019-10187
was published
for
moodle/moodle
(Composer)
May 24, 2022
Missing Authorization in Jenkins Pipeline: Shared Groovy Libraries Plugin
Moderate
CVE-2019-10357
was published
for
org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
(Maven)
May 24, 2022
Missing Authorization in Jenkins Configuration as Code Plugin
Moderate
CVE-2019-10344
was published
for
io.jenkins:configuration-as-code
(Maven)
May 24, 2022
A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event...
Moderate
Unreviewed
CVE-2019-5449
was published
May 24, 2022
Missing Authorization in Jenkins
Moderate
CVE-2019-10354
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Saleor Issue was introduced by merge commit: e1b01bad0703afd08d297ed3f1f472248312cc9c. This...
Moderate
Unreviewed
CVE-2019-1010304
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API