GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
184 advisories
Filter by severity
IBM QRadar 7.2 uses outdated hashing algorithms to hash certain passwords, which could allow a...
High
Unreviewed
CVE-2016-2879
was published
May 17, 2022
hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and...
High
Unreviewed
CVE-2016-10102
was published
May 17, 2022
The user and password data base is exposed by an unprotected web server resource. Passwords are...
High
Unreviewed
CVE-2021-23855
was published
May 24, 2022
The Linux kernel 4.x (starting from 4.1) and 5.x before 5.0.8 allows Information Exposure ...
High
Unreviewed
CVE-2019-10639
was published
May 24, 2022
An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is...
High
Unreviewed
CVE-2019-14332
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.012.20034 and earlier; 2019.012.20035 and earlier versions...
High
Unreviewed
CVE-2019-8237
was published
May 24, 2022
An issue was discovered in UNCTAD ASYCUDA World 2001 through 2020. The Java RMI Server has an...
High
Unreviewed
CVE-2020-9761
was published
May 24, 2022
A Sensitive Source Code Path Disclosure vulnerability is found in ElkarBackup v1.3.3. An attacker...
High
Unreviewed
CVE-2020-24925
was published
May 24, 2022
cPanel before 88.0.3, upon an upgrade, establishes predictable PowerDNS API keys (SEC-561).
High
Unreviewed
CVE-2020-26107
was published
May 24, 2022
A vulnerability in the sftunnel functionality of Cisco Firepower Management Center (FMC) Software...
High
Unreviewed
CVE-2020-3549
was published
May 24, 2022
A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references,...
High
Unreviewed
CVE-2020-7565
was published
May 24, 2022
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P,...
High
Unreviewed
CVE-2020-29063
was published
May 24, 2022
OpenSIS Community Edition through 7.6 is affected by incorrect access controls for the file...
High
Unreviewed
CVE-2020-27408
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4594
was published
May 24, 2022
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic...
High
Unreviewed
CVE-2019-4160
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4595
was published
May 24, 2022
An issue was discovered in Aviatrix Controller before R6.0.2483. Multiple executable files, that...
High
Unreviewed
CVE-2020-26552
was published
May 24, 2022
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt...
High
Unreviewed
CVE-2020-36201
was published
May 24, 2022
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below....
High
Unreviewed
CVE-2020-11719
was published
May 24, 2022
The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from...
High
Unreviewed
CVE-2017-20001
was published
May 24, 2022
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction...
High
Unreviewed
CVE-2019-18630
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4596
was published
May 24, 2022
SSH server configuration file does not implement some best practices. This could lead to a...
High
Unreviewed
CVE-2021-27450
was published
May 24, 2022
Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows attackers to obtain sensitive...
High
Unreviewed
CVE-2020-18220
was published
May 24, 2022
Password generator feature in Kaspersky Password Manager was not completely cryptographically...
High
Unreviewed
CVE-2020-27020
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API