GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
223 advisories
Filter by severity
An issue was discovered on Humax Wireless Voice Gateway HGB10R-2 20160817_1855 devices. The...
Moderate
Unreviewed
CVE-2019-19889
was published
May 24, 2022
A vulnerability has been identified in SPPA-T3000 Application Server (All versions). The RMI...
Moderate
Unreviewed
CVE-2019-18285
was published
May 24, 2022
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build...
Moderate
Unreviewed
CVE-2019-16672
was published
May 24, 2022
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build...
Moderate
Unreviewed
CVE-2019-16674
was published
May 24, 2022
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580,...
Moderate
Unreviewed
CVE-2019-6846
was published
May 24, 2022
Stephan Mooltipass Moolticute through 0.42.1 (and possibly earlier versions) has Incorrect Access...
Moderate
Unreviewed
CVE-2019-12967
was published
May 24, 2022
An issue was discovered in the RENPHO application 3.0.0 for iOS. It transmits JSON data...
Moderate
Unreviewed
CVE-2019-14808
was published
May 24, 2022
JetBrains Toolbox before 1.15.5605 was resolving an internal URL via a cleartext http connection.
Moderate
Unreviewed
CVE-2019-14959
was published
May 24, 2022
IBM Sterling File Gateway 2.2.0.0 through 6.0.1.0 displays sensitive information in HTTP requests...
Moderate
Unreviewed
CVE-2019-4280
was published
May 24, 2022
Encrypted S/MIME parts in a crafted multipart/alternative message can leak plaintext when...
Moderate
Unreviewed
CVE-2019-11739
was published
May 24, 2022
An issue was discovered in Grafana 5.4.0. Passwords for data sources used by Grafana (e.g., MySQL...
Moderate
Unreviewed
CVE-2019-15635
was published
May 24, 2022
In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub...
Moderate
Unreviewed
CVE-2019-14664
was published
May 24, 2022
A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions...
Moderate
Unreviewed
CVE-2019-12820
was published
May 24, 2022
JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during...
Moderate
Unreviewed
CVE-2019-10101
was published
May 24, 2022
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and...
Moderate
Unreviewed
CVE-2019-6640
was published
May 24, 2022
A vulnerability has been identified in SIMATIC Ident MV420 family (All versions), SIMATIC Ident...
Moderate
Unreviewed
CVE-2019-10926
was published
May 24, 2022
On BIG-IP 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, SNMP may expose...
Moderate
Unreviewed
CVE-2019-6613
was published
May 24, 2022
Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof...
Moderate
Unreviewed
CVE-2018-6019
was published
May 13, 2022
The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private...
Moderate
Unreviewed
CVE-2018-19111
was published
May 13, 2022
The Sky Go Desktop application 1.0.19-1 through 1.0.23-1 for Windows performs several requests...
Moderate
Unreviewed
CVE-2018-18908
was published
May 13, 2022
The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when...
Moderate
Unreviewed
CVE-2018-14627
was published
May 13, 2022
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B)...
Moderate
Unreviewed
CVE-2018-12674
was published
May 13, 2022
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent...
Moderate
Unreviewed
CVE-2018-11477
was published
May 13, 2022
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate...
Moderate
Unreviewed
CVE-2018-11402
was published
May 13, 2022
SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate...
Moderate
Unreviewed
CVE-2018-11399
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API