GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,738
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
275 advisories
Filter by severity
Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology...
Moderate
Unreviewed
CVE-2021-26560
was published
May 24, 2022
Cleartext transmission of sensitive information vulnerability in synorelayd in Synology...
Moderate
Unreviewed
CVE-2021-26565
was published
May 24, 2022
Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote...
Moderate
Unreviewed
CVE-2020-25605
was published
May 24, 2022
For MongoDB Ops Manager 4.2.X with multiple OM application servers, that have SSL turned on for...
Moderate
Unreviewed
CVE-2021-20335
was published
May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) prior to version 3.1.0...
Moderate
Unreviewed
CVE-2020-8355
was published
May 24, 2022
IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2020-4969
was published
May 24, 2022
IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive...
Moderate
Unreviewed
CVE-2020-4893
was published
May 24, 2022
An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of...
Moderate
Unreviewed
CVE-2020-13528
was published
May 24, 2022
BigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https...
Moderate
Unreviewed
CVE-2020-14248
was published
May 24, 2022
Quick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text.
Moderate
Unreviewed
CVE-2020-27586
was published
May 24, 2022
An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1...
Moderate
Unreviewed
CVE-2020-29380
was published
May 24, 2022
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P,...
Moderate
Unreviewed
CVE-2020-29055
was published
May 24, 2022
UPNP Service listening on port 5555 in Genexis Platinum 4410 Router V2.1 has an action ...
Moderate
Unreviewed
CVE-2020-25988
was published
May 24, 2022
Cleartext transmission of sensitive information vulnerability in DDNS in Synology Router Manager ...
Moderate
Unreviewed
CVE-2020-27657
was published
May 24, 2022
Cleartext transmission of sensitive information vulnerability in DDNS in Synology DiskStation...
Moderate
Unreviewed
CVE-2020-27656
was published
May 24, 2022
An issue was discovered in Gradle Enterprise before 2020.2.5. Lack of the secure attribute on the...
Moderate
Unreviewed
CVE-2020-15767
was published
May 24, 2022
A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such...
Moderate
Unreviewed
CVE-2020-1749
was published
May 24, 2022
A vulnerability has been identified in Siveillance Video Client (All versions). In environments...
Moderate
Unreviewed
CVE-2020-15785
was published
May 24, 2022
u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead...
Moderate
Unreviewed
CVE-2020-3702
was published
May 24, 2022
Passwords transmitted in plain text by Jenkins ReadyAPI Functional Testing Plugin
Moderate
CVE-2020-2251
was published
for
org.jenkins-ci.plugins:soapui-pro-functional-testing
(Maven)
May 24, 2022
NCR SelfServ ATMs running APTRA XFS 05.01.00 do not encrypt, authenticate, or verify the...
Moderate
Unreviewed
CVE-2020-10124
was published
May 24, 2022
Atlassian Bitbucket Server from version 4.9.0 before version 7.2.4 allows remote attackers to...
Moderate
Unreviewed
CVE-2020-14171
was published
May 24, 2022
If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH...
Moderate
Unreviewed
CVE-2020-12398
was published
May 24, 2022
Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android...
Moderate
Unreviewed
CVE-2020-15509
was published
May 24, 2022
This vulnerability applies to the Micro Air Vehicle Link (MAVLink) protocol and allows a remote...
Moderate
Unreviewed
CVE-2020-10281
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API