GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
190 advisories
Filter by severity
Context isolation bypass in Electron
Low
CVE-2020-15215
was published
for
electron
(npm)
Oct 6, 2020
A user without PR can reset user authentication failures information
Low
CVE-2021-32729
was published
for
org.xwiki.platform:xwiki-platform-security-authentication-script
(Maven)
Jul 2, 2021
Protection Mechanism Failure in Jenkins Script Security Plugin
High
CVE-2019-1003000
was published
for
org.jenkins-ci.plugins:script-security
(Maven)
May 13, 2022
A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP...
High
Unreviewed
CVE-2020-28396
was published
May 24, 2022
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ...
Moderate
Unreviewed
CVE-2019-13924
was published
May 24, 2022
This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 prior...
High
Unreviewed
CVE-2021-27245
was published
May 24, 2022
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled...
Moderate
Unreviewed
CVE-2021-36310
was published
Nov 21, 2021
A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings...
Moderate
Unreviewed
CVE-2021-1517
was published
May 24, 2022
Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access...
Critical
Unreviewed
CVE-2021-32835
was published
May 24, 2022
Jenkins Compuware Topaz for Total Test Plugin vulnerable to Protection Mechanism Failure
High
CVE-2022-43429
was published
for
com.compuware.jenkins:compuware-topaz-for-total-test
(Maven)
Oct 19, 2022
Agent-to-controller security bypass in Jenkins xUnit Plugin
Moderate
CVE-2022-34181
was published
for
org.jenkins-ci.plugins:xunit
(Maven)
Jun 24, 2022
Script security sandbox bypass in Jenkins Email Extension Plugin
Critical
CVE-2019-1003032
was published
for
org.jenkins-ci.plugins:email-ext
(Maven)
May 13, 2022
Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin
High
CVE-2022-43404
was published
for
org.jenkins-ci.plugins.workflow:workflow-cps
(Maven)
Oct 19, 2022
Sandbox bypass vulnerability in Jenkins Pipeline: Deprecated Groovy Libraries Plugin
High
CVE-2022-43406
was published
for
io.jenkins.plugins:pipeline-groovy-lib
(Maven)
Oct 19, 2022
Content-Security-Policy protection for user content disabled by Jenkins XFramium Builder Plugin
High
CVE-2022-43432
was published
for
org.jenkins-ci.plugins:xframium
(Maven)
Oct 19, 2022
Sandbox bypass vulnerability in Jenkins Pipeline: Groovy Libraries Plugin and Pipeline: Deprecated Groovy Libraries Plugin
High
CVE-2022-43405
was published
for
io.jenkins.plugins:pipeline-groovy-lib
(Maven)
Oct 19, 2022
Content-Security-Policy protection for user content disabled by Jenkins ScreenRecorder Plugin
High
CVE-2022-43433
was published
for
io.jenkins.plugins:screenrecorder
(Maven)
Oct 19, 2022
Content-Security-Policy protection for user content can be disabled in Jenkins 360 FireLine Plugin
High
CVE-2022-43435
was published
for
org.jenkins-ci.plugins.plugin:fireline
(Maven)
Oct 19, 2022
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD)...
High
Unreviewed
CVE-2019-1669
was published
May 13, 2022
A vulnerability in the web UI of Cisco TelePresence Server Software could allow an...
Moderate
Unreviewed
CVE-2018-0326
was published
May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an...
Moderate
Unreviewed
CVE-2018-0384
was published
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an...
Moderate
Unreviewed
CVE-2018-0243
was published
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an...
Moderate
Unreviewed
CVE-2018-0244
was published
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an...
Moderate
Unreviewed
CVE-2018-0297
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API