Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93,946 advisories

Loading
In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116). High Unreviewed
CVE-2016-10811 was published May 24, 2022
In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs (SEC-117). High Unreviewed
CVE-2016-10812 was published May 24, 2022
In cPanel before 57.9999.54, /scripts/checkinfopages exposed a TTY to an unprivileged process ... High Unreviewed
CVE-2016-10809 was published May 24, 2022
In cPanel before 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs (SEC-113). High Unreviewed
CVE-2016-10808 was published May 24, 2022
In cPanel before 57.9999.54, /scripts/maildir_converter exposed a TTY to an unprivileged process ... High Unreviewed
CVE-2016-10810 was published May 24, 2022
cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP... High Unreviewed
CVE-2016-10802 was published May 24, 2022
cPanel before 57.9999.54 allows demo accounts to execute arbitrary code via... High Unreviewed
CVE-2016-10805 was published May 24, 2022
The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations... High Unreviewed
CVE-2016-10804 was published May 24, 2022
cPanel before 57.9999.105 allows newline injection via LOC records (CPANEL-6923). High Unreviewed
CVE-2016-10803 was published May 24, 2022
cPanel before 58.0.4 has improper session handling for shared users (SEC-139). High Unreviewed
CVE-2016-10801 was published May 24, 2022
cPanel before 58.0.4 allows demo-mode escape via Site Templates and Boxtrapper API calls (SEC-138). High Unreviewed
CVE-2016-10800 was published May 24, 2022
Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X... High Unreviewed
CVE-2019-6001 was published May 24, 2022
Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X... High Unreviewed
CVE-2019-5994 was published May 24, 2022
NVIDIA Shield TV Experience prior to v8.0, contains a vulnerability in the NVIDIA Games App where... High Unreviewed
CVE-2019-5682 was published May 24, 2022
NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in... High Unreviewed
CVE-2019-5679 was published May 24, 2022
eQ-3 Homematic CCU2 and CCU3 use session IDs for authentication but lack authorization checks.... High Unreviewed
CVE-2019-14473 was published May 24, 2022
Internal/Views/config.php in Schben Adive 2.0.7 allows admin/config CSRF to change a user password. High Unreviewed
CVE-2019-14346 was published May 24, 2022
Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when... High Unreviewed
CVE-2019-13105 was published May 24, 2022
cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF... High Unreviewed
CVE-2016-10793 was published May 24, 2022
cPanel before 60.0.25 does not use TLS for HTTP POSTs to listinput.cpanel.net (SEC-192). High Unreviewed
CVE-2016-10790 was published May 24, 2022
cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list... High Unreviewed
CVE-2016-10792 was published May 24, 2022
cPanel before 60.0.25 allows code execution via the cpsrvd 403 error response handler (SEC-191). High Unreviewed
CVE-2016-10789 was published May 24, 2022
cPanel before 60.0.25 allows arbitrary code execution via Maketext in PostgreSQL adminbin (SEC-188). High Unreviewed
CVE-2016-10788 was published May 24, 2022
The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries ... High Unreviewed
CVE-2016-10787 was published May 24, 2022
eQ-3 Homematic CCU2 2.47.15 and prior and CCU3 3.47.15 and prior use session IDs for... High Unreviewed
CVE-2019-14475 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API