Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,315
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

476 advisories

Loading
Missing permission check in Jenkins Gerrit Trigger Plugin Moderate
CVE-2019-16552 was published for com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger (Maven) May 24, 2022
Jenkins WebSphere Deployer Plugin missing permission check Moderate
CVE-2019-16559 was published for org.jenkins-ci.plugins:websphere-deployer (Maven) May 24, 2022
Missing permission check in Jenkins Build Failure Analyzer Plugin Moderate
CVE-2019-16554 was published for com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer (Maven) May 24, 2022
An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for... Moderate Unreviewed
CVE-2019-17103 was published May 24, 2022
Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0... Moderate Unreviewed
CVE-2019-20106 was published May 24, 2022
In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user... Moderate Unreviewed
CVE-2020-0023 was published May 24, 2022
Incorrect default permissions in the installer for Intel(R) Graphics Drivers before versions 15... Moderate Unreviewed
CVE-2020-0508 was published May 24, 2022
Improper input validation in Druva inSync Client 6.5.0 allows a local, authenticated attacker to... Moderate Unreviewed
CVE-2019-4001 was published May 24, 2022
Insufficient policy enforcement in full screen in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed
CVE-2020-6431 was published May 24, 2022
Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed
CVE-2020-6439 was published May 24, 2022
Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed
CVE-2020-6441 was published May 24, 2022
Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed
CVE-2020-6445 was published May 24, 2022
Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed
CVE-2020-6446 was published May 24, 2022
Insufficient validation of untrusted input in clipboard in Google Chrome prior to 81.0.4044.92... Moderate Unreviewed
CVE-2020-6456 was published May 24, 2022
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow an authenticated user to access data and perform... Moderate Unreviewed
CVE-2020-4274 was published May 24, 2022
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a local user to gain escalated privileges due to... Moderate Unreviewed
CVE-2020-4270 was published May 24, 2022
The address-management feature in xt:Commerce 5.1 to 6.2.2 allows remote authenticated users to... Moderate Unreviewed
CVE-2020-12101 was published May 24, 2022
Improper permission checks in Jenkins Copy Artifact Plugin Moderate
CVE-2020-2183 was published for org.jenkins-ci.plugins:copyartifact (Maven) May 24, 2022
NotMyFault
Dolibarr Stored Cross-site Scripting Moderate
CVE-2020-13240 was published for dolibarr/dolibarr (Composer) May 24, 2022
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed... Moderate Unreviewed
CVE-2020-6471 was published May 24, 2022
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed... Moderate Unreviewed
CVE-2020-6469 was published May 24, 2022
Insufficient policy enforcement in tab strip in Google Chrome prior to 83.0.4103.61 allowed an... Moderate Unreviewed
CVE-2020-6476 was published May 24, 2022
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed... Moderate Unreviewed
CVE-2020-6482 was published May 24, 2022
Insufficient data validation in ChromeDriver in Google Chrome prior to 83.0.4103.61 allowed a... Moderate Unreviewed
CVE-2020-6484 was published May 24, 2022
Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a... Moderate Unreviewed
CVE-2020-6488 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database