GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,053

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

264 advisories

Filter by severity

Sort by

Least recently updated

TP-LINK TL-WR849N 0.9.1 4.16 devices do not require authentication to replace the firmware via a... Moderate Unreviewed

CVE-2019-19143 was published May 24, 2022

VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H) 7-7.x before 7-7.2... Moderate Unreviewed

CVE-2015-5201 was published May 24, 2022

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface ... Moderate Unreviewed

CVE-2019-19224 was published May 24, 2022

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface ... Moderate Unreviewed

CVE-2019-19225 was published May 24, 2022

A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface ... Moderate Unreviewed

CVE-2019-19226 was published May 24, 2022

Some Brother printers (such as the HL-L8360CDW v1.20) were affected by different information... Moderate Unreviewed

CVE-2019-13194 was published May 24, 2022

Zoho ManageEngine Applications Manager 14590 and before allows a remote unauthenticated attacker... Moderate Unreviewed

CVE-2019-19799 was published May 24, 2022

Comba AP2600-I devices through A02,0202N00PD2 are prone to password disclosure via a simple... Moderate Unreviewed

CVE-2019-15654 was published May 24, 2022

D-Link DSL-2875AL devices through 1.00.05 are prone to password disclosure via a simple crafted ... Moderate Unreviewed

CVE-2019-15655 was published May 24, 2022

auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a... Moderate Unreviewed

CVE-2020-10807 was published May 24, 2022

A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14... Moderate Unreviewed

CVE-2020-7479 was published May 24, 2022

UltraLog Express device management interface does not properly perform access authentication in... Moderate Unreviewed

CVE-2020-3920 was published May 24, 2022

Zoho ManageEngine Desktop Central allows unauthenticated users to access PDFGenerationServlet,... Moderate Unreviewed

CVE-2020-8509 was published May 24, 2022

CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to... Moderate Unreviewed

CVE-2020-10264 was published May 24, 2022

Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or... Moderate Unreviewed

CVE-2020-3952 was published May 24, 2022

SAP Solution Manager (Diagnostics Agent), version 7.2, does not perform the authentication check... Moderate Unreviewed

CVE-2020-6235 was published May 24, 2022

Zoho ManageEngine OpManager before 125120 allows an unauthenticated user to retrieve an API key... Moderate Unreviewed

CVE-2020-11946 was published May 24, 2022

An issue was discovered on WAVLINK WL-WN579G3 M79X3.V5030.180719, WL-WN575A3 RPT75A3.V4300.180801... Moderate Unreviewed

CVE-2020-12266 was published May 24, 2022

An unprotected logging route may allow an attacker to write endless log statements into the... Moderate Unreviewed

CVE-2020-10641 was published May 24, 2022

Moxa Service in Moxa NPort 5150A firmware version 1.5 and earlier allows attackers to obtain... Moderate Unreviewed

CVE-2020-12117 was published May 24, 2022

An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices, affecting /cgi-bin... Moderate Unreviewed

CVE-2020-10973 was published May 24, 2022

An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. A page is exposed... Moderate Unreviewed

CVE-2020-10972 was published May 24, 2022

An issue was discovered on Wavlink WL-WN579G3 - M79X3.V5030.180719 and WL-WN575A3 - RPT75A3.V4300... Moderate Unreviewed

CVE-2020-10974 was published May 24, 2022

A vulnerability in the API of Cisco Application Services Engine Software could allow an... Moderate Unreviewed

CVE-2020-3333 was published May 24, 2022

A vulnerability in the key store of Cisco Application Services Engine Software could allow an... Moderate Unreviewed

CVE-2020-3335 was published May 24, 2022

Previous 1 2 3 4 5 6 … 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

264 advisories