GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,889
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,500
Maven 5,942
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,561

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,350 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security)... Moderate Unreviewed

CVE-2015-8987 was published May 17, 2022

The certificate upload feature in iManager in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and... High Unreviewed

CVE-2016-5750 was published May 17, 2022

Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed

CVE-2016-4031 was published May 17, 2022

A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell... High Unreviewed

CVE-2016-5747 was published May 17, 2022

The Broadcom Wi-Fi driver for Android, as used by BlackBerry smartphones before Build AAE570,... High Unreviewed

CVE-2016-2433 was published May 17, 2022

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT... Moderate Unreviewed

CVE-2016-8793 was published May 17, 2022

hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating... Moderate Unreviewed

CVE-2016-5026 was published May 17, 2022

IBM Security Privileged Identity Manager Virtual Appliance allows an authenticated user to upload... Moderate Unreviewed

CVE-2016-5990 was published May 17, 2022

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT... High Unreviewed

CVE-2016-8792 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... High Unreviewed

CVE-2016-8298 was published May 17, 2022

IBM Connections 5.5 and earlier is vulnerable to possible link manipulation attack that could... Moderate Unreviewed

CVE-2016-0308 was published May 17, 2022

IBM BigFix Remote Control 9.1.3 could allow a remote attacker to perform actions reserved for an... High Unreviewed

CVE-2016-2930 was published May 17, 2022

A vulnerability has been identified in IBM Cloud Orchestrator services/[action]/launch API. An... Low Unreviewed

CVE-2015-7494 was published May 17, 2022

IBM Tivoli Storage Productivity Center could allow an authenticated user with intimate knowledge... Low Unreviewed

CVE-2016-8942 was published May 17, 2022

IBM UrbanCode Deploy could allow a user to execute code using a specially crafted file upload... Critical Unreviewed

CVE-2016-8938 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8311 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8309 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8300 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8299 was published May 17, 2022

IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST... Moderate Unreviewed

CVE-2016-0320 was published May 17, 2022

The default configuration for Cougar-LG stores sensitive information under the web root with... High Unreviewed

CVE-2014-3929 was published May 17, 2022

An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to... Moderate Unreviewed

CVE-2016-10223 was published May 17, 2022

Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization. High Unreviewed

CVE-2016-6605 was published May 17, 2022

dlp_policy_upload.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows... High Unreviewed

CVE-2016-8587 was published May 17, 2022

The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier... Moderate Unreviewed

CVE-2016-1178 was published May 17, 2022

Previous 1…126…134 Next

Previous 1 2 … 124 125 126 127 128 … 133 134 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,350 advisories