Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,383 advisories

Loading
PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM... Critical Unreviewed
CVE-2016-8580 was published May 17, 2022
In OpenSSL 1.1.0 before 1.1.0c, TLS connections using *-CHACHA20-POLY1305 ciphersuites are... High Unreviewed
CVE-2016-7054 was published May 17, 2022
vaconfig/time in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows... High Unreviewed
CVE-2016-1608 was published May 17, 2022
Path Traversal in Apache Atlas High
CVE-2016-8752 was published for org.apache.atlas:atlas-common (Maven) May 17, 2022
An issue was discovered in components/com_users/models/registration.php in Joomla! before 3.6.5.... High Unreviewed
CVE-2016-9838 was published May 17, 2022
content/renderer/history_controller.cc in Google Chrome before 52.0.2743.82 does not properly... Moderate Unreviewed
CVE-2016-5130 was published May 17, 2022
Open redirect vulnerability in the Connections Portlets component 5.x before 5.0.2 for IBM... Moderate Unreviewed
CVE-2016-2989 was published May 17, 2022
The web-restore interface in Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC... High Unreviewed
CVE-2016-0906 was published May 17, 2022
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS... Moderate Unreviewed
CVE-2016-0357 was published May 17, 2022
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS... Moderate Unreviewed
CVE-2016-0339 was published May 17, 2022
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS... High Unreviewed
CVE-2016-0340 was published May 17, 2022
Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote... High Unreviewed
CVE-2015-4649 was published May 17, 2022
Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations... Moderate Unreviewed
CVE-2013-4213 was published May 17, 2022
OpenStack Compute (Nova) Improper Access Control Moderate
CVE-2015-2687 was published for nova (pip) May 17, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability... Critical Unreviewed
CVE-2015-9047 was published May 17, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability... Critical Unreviewed
CVE-2015-9040 was published May 17, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, access control to... Critical Unreviewed
CVE-2016-10382 was published May 17, 2022
Apache Tomcat does not follow ServletSecurity annotations Moderate
CVE-2011-1419 was published for org.apache.tomcat:tomcat (Maven) May 17, 2022
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement High
CVE-2008-6603 was published for moin (pip) May 17, 2022
IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x... Moderate Unreviewed
CVE-2016-2960 was published May 17, 2022
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes... Moderate Unreviewed
CVE-2016-1474 was published May 17, 2022
A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky... Moderate Unreviewed
CVE-2016-4307 was published May 17, 2022
A denial of service vulnerability exists in the syscall filtering functionality of the Kaspersky... Moderate Unreviewed
CVE-2016-4304 was published May 17, 2022
A denial of service vulnerability exists in the syscall filtering functionality of Kaspersky... Moderate Unreviewed
CVE-2016-4305 was published May 17, 2022
OMXCodec.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5... High Unreviewed
CVE-2016-3899 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database