GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
210 advisories
Filter by severity
Publify Core does not strip metadata from images
Moderate
CVE-2022-2815
was published
for
publify_core
(RubyGems)
Jan 14, 2023
Philips Gemini PET/CT family software stores sensitive information in a removable media device...
Low
Unreviewed
CVE-2021-27456
was published
Mar 24, 2022
Logins saved by Firefox should be managed by the Password Manager component which uses encryption...
Low
Unreviewed
CVE-2022-42931
was published
Dec 22, 2022
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior...
Moderate
Unreviewed
CVE-2022-1257
was published
Apr 15, 2022
In SolarWinds Serv-U before 15.2.2 Hotfix 1, there is a directory containing user profile files ...
High
Unreviewed
CVE-2021-25276
was published
May 24, 2022
An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android,...
Moderate
Unreviewed
CVE-2021-43512
was published
Jun 3, 2022
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to...
Moderate
Unreviewed
CVE-2021-27004
was published
May 24, 2022
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1...
Moderate
Unreviewed
CVE-2021-21816
was published
May 24, 2022
Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical...
Moderate
Unreviewed
CVE-2022-30740
was published
Jun 8, 2022
In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server...
High
Unreviewed
CVE-2022-28168
was published
Jun 28, 2022
Brocade SANnav before Brocade SANvav v. 2.2.0.2 and Brocade SANanv v.2.1.1.8 logs the Brocade...
Moderate
Unreviewed
CVE-2022-28167
was published
Jun 28, 2022
Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4...
Moderate
Unreviewed
CVE-2022-28170
was published
Oct 26, 2022
During iframe navigation, certain pages did not have their FeaturePolicy fully initialized...
Moderate
Unreviewed
CVE-2022-40959
was published
Dec 22, 2022
IBM CICS TX 11.1 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2022-34312
was published
Nov 14, 2022
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote...
Moderate
Unreviewed
CVE-2019-13719
was published
May 24, 2022
Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote...
Moderate
Unreviewed
CVE-2019-13717
was published
May 24, 2022
SUSE Manager until version 4.0.7 and Uyuni until commit 1b426ad5ed0a7191a6fb46bb83e98ae4b99a5ade...
Moderate
Unreviewed
CVE-2019-3684
was published
May 24, 2022
IBM Sterling Partner Engagement Manager 2.0 allows encrypted storage of client data to be stored...
Low
Unreviewed
CVE-2022-34354
was published
Nov 16, 2022
An issue was discovered in Gradle Enterprise 2017.1 - 2020.2.4. Unrestricted access to a high...
High
Unreviewed
CVE-2020-15775
was published
May 24, 2022
In constructImportFailureNotification of NotificationImportExportListener.java, there is a...
Low
Unreviewed
CVE-2020-0422
was published
May 24, 2022
This issue was addresses by updating incorrect URLSession file descriptors management logic to...
Moderate
Unreviewed
CVE-2019-8790
was published
May 24, 2022
This issue was resolved by replacing device names with a random identifier. This issue is fixed...
Low
Unreviewed
CVE-2019-8799
was published
May 24, 2022
IBM Security Guardium Insights 2.0.1 stores sensitive information in URL parameters. This may...
Moderate
Unreviewed
CVE-2020-4172
was published
May 24, 2022
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with...
Low
Unreviewed
CVE-2019-19561
was published
May 24, 2022
An information disclosure issue existed in the handling of the Storage Access API. This issue was...
Moderate
Unreviewed
CVE-2019-8898
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API