GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,198

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

441 advisories

Filter by severity

Sort by

Least recently updated

IBM QRadar SIEM 7.3 and 7.4 could allow a remote attacker to execute arbitrary commands on the... High Unreviewed

CVE-2020-4280 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It uses... High Unreviewed

CVE-2020-25259 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It uses... High Unreviewed

CVE-2020-25258 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. It... High Unreviewed

CVE-2020-25260 was published May 24, 2022

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute... High Unreviewed

CVE-2020-4589 was published May 24, 2022

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to achieve... High Unreviewed

CVE-2020-14172 was published May 24, 2022

compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates... High Unreviewed

CVE-2020-14933 was published May 24, 2022

TylerTech Eagle 2018.3.11 deserializes untrusted user input, resulting in remote code execution... High Unreviewed

CVE-2019-16112 was published May 24, 2022

Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated... High Unreviewed

CVE-2020-5741 was published May 24, 2022

The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote... High Unreviewed

CVE-2020-12133 was published May 24, 2022

Zoho ManageEngine Desktop Central 10 allows remote code execution because of deserialization of... High Unreviewed

CVE-2020-10189 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft Exchange software when the software... High Unreviewed

CVE-2020-0688 was published May 24, 2022

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching... High Unreviewed

CVE-2020-2555 was published May 24, 2022

An attacker who has already compromised the local system could use TinyWall Controller to gain... High Unreviewed

CVE-2019-19470 was published May 24, 2022

An issue was discovered in Public Knowledge Project (PKP) pkp-lib before 3.1.2-2, as used in Open... High Unreviewed

CVE-2019-19909 was published May 24, 2022

A vulnerability has been identified in SPPA-T3000 Application Server (All versions). The... High Unreviewed

CVE-2019-18283 was published May 24, 2022

Progress Telerik UI for ASP.NET AJAX through 2019.3.1023 contains a .NET deserialization... High Unreviewed

CVE-2019-18935 was published May 24, 2022

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data... High Unreviewed

CVE-2019-18601 was published May 24, 2022

mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE... High Unreviewed

CVE-2019-17080 was published May 24, 2022

Insecure deserialization of untrusted data in Micro Focus Service Manager product versions 9.30,... High Unreviewed

CVE-2019-11666 was published May 24, 2022

The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via... High Unreviewed

CVE-2017-18604 was published May 24, 2022

A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web... High Unreviewed

CVE-2019-5069 was published May 24, 2022

A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1... High Unreviewed

CVE-2019-10135 was published May 24, 2022

Sitecore Experience Platform (XP) prior to 9.1.1 is vulnerable to remote code execution via... High Unreviewed

CVE-2019-11080 was published May 24, 2022

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)... High Unreviewed

CVE-2019-5350 was published May 24, 2022

Previous 1 2 … 12 13 14 15 16 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

441 advisories