GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,946 advisories
Filter by severity
In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs (SEC-116).
High
Unreviewed
CVE-2016-10811
was published
May 24, 2022
In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs (SEC-117).
High
Unreviewed
CVE-2016-10812
was published
May 24, 2022
In cPanel before 57.9999.54, /scripts/checkinfopages exposed a TTY to an unprivileged process ...
High
Unreviewed
CVE-2016-10809
was published
May 24, 2022
In cPanel before 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs (SEC-113).
High
Unreviewed
CVE-2016-10808
was published
May 24, 2022
In cPanel before 57.9999.54, /scripts/maildir_converter exposed a TTY to an unprivileged process ...
High
Unreviewed
CVE-2016-10810
was published
May 24, 2022
cPanel before 58.0.4 allows code execution in the context of other user accounts through the PHP...
High
Unreviewed
CVE-2016-10802
was published
May 24, 2022
cPanel before 57.9999.54 allows demo accounts to execute arbitrary code via...
High
Unreviewed
CVE-2016-10805
was published
May 24, 2022
The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations...
High
Unreviewed
CVE-2016-10804
was published
May 24, 2022
cPanel before 57.9999.105 allows newline injection via LOC records (CPANEL-6923).
High
Unreviewed
CVE-2016-10803
was published
May 24, 2022
cPanel before 58.0.4 has improper session handling for shared users (SEC-139).
High
Unreviewed
CVE-2016-10801
was published
May 24, 2022
cPanel before 58.0.4 allows demo-mode escape via Site Templates and Boxtrapper API calls (SEC-138).
High
Unreviewed
CVE-2016-10800
was published
May 24, 2022
Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X...
High
Unreviewed
CVE-2019-6001
was published
May 24, 2022
Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X...
High
Unreviewed
CVE-2019-5994
was published
May 24, 2022
NVIDIA Shield TV Experience prior to v8.0, contains a vulnerability in the NVIDIA Games App where...
High
Unreviewed
CVE-2019-5682
was published
May 24, 2022
NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in...
High
Unreviewed
CVE-2019-5679
was published
May 24, 2022
eQ-3 Homematic CCU2 and CCU3 use session IDs for authentication but lack authorization checks....
High
Unreviewed
CVE-2019-14473
was published
May 24, 2022
Internal/Views/config.php in Schben Adive 2.0.7 allows admin/config CSRF to change a user password.
High
Unreviewed
CVE-2019-14346
was published
May 24, 2022
Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when...
High
Unreviewed
CVE-2019-13105
was published
May 24, 2022
cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect #! in Mail::SPF...
High
Unreviewed
CVE-2016-10793
was published
May 24, 2022
cPanel before 60.0.25 does not use TLS for HTTP POSTs to listinput.cpanel.net (SEC-192).
High
Unreviewed
CVE-2016-10790
was published
May 24, 2022
cPanel before 59.9999.145 allows code execution in the context of other accounts via mailman list...
High
Unreviewed
CVE-2016-10792
was published
May 24, 2022
cPanel before 60.0.25 allows code execution via the cpsrvd 403 error response handler (SEC-191).
High
Unreviewed
CVE-2016-10789
was published
May 24, 2022
cPanel before 60.0.25 allows arbitrary code execution via Maketext in PostgreSQL adminbin (SEC-188).
High
Unreviewed
CVE-2016-10788
was published
May 24, 2022
The Host Access Control feature in cPanel before 60.0.25 mishandles actionless host.deny entries ...
High
Unreviewed
CVE-2016-10787
was published
May 24, 2022
eQ-3 Homematic CCU2 2.47.15 and prior and CCU3 3.47.15 and prior use session IDs for...
High
Unreviewed
CVE-2019-14475
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API