Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within... Low Unreviewed
CVE-2015-3756 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality... Low Unreviewed
CVE-2016-0618 was published May 17, 2022
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1... Low Unreviewed
CVE-2012-6150 was published May 17, 2022
IDE Xcode Server in Apple Xcode before 7.0 does not ensure that server traffic is encrypted,... Low Unreviewed
CVE-2015-5910 was published May 17, 2022
Unspecified vulnerability in Powershell Operations in HP Operations Orchestration 9.x and 10.x... Low Unreviewed
CVE-2015-2108 was published May 17, 2022
The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel... Low Unreviewed
CVE-2015-7884 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality... Low Unreviewed
CVE-2015-2574 was published May 17, 2022
IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before... Low Unreviewed
CVE-2015-1951 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1... Low Unreviewed
CVE-2015-1979 was published May 17, 2022
The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local... Low Unreviewed
CVE-2015-1901 was published May 17, 2022
Unspecified vulnerability in the Oracle SOA Suite component in Oracle Fusion Middleware 11.1.1.7... Low Unreviewed
CVE-2015-0414 was published May 17, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent:... Low Unreviewed
CVE-2019-2786 was published May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10447 was published May 24, 2022
IBM Sterling Connect:Direct 4.5.00, 4.5.01, 4.6.0 before 4.6.0.6 iFix008, and 4.7.0 before 4.7.0... Low Unreviewed
CVE-2016-5992 was published May 17, 2022
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0... Low Unreviewed
CVE-2022-22326 was published Aug 2, 2022
Cross-site scripting (XSS) vulnerability in Zurmo CRM 3.0.2 allows remote authenticated users to... Low Unreviewed
CVE-2015-5365 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity via... Low Unreviewed
CVE-2015-4920 was published May 17, 2022
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI... Low Unreviewed
CVE-2015-5281 was published May 17, 2022
SpringBoard in Apple iOS before 9 allows physically proximate attackers to bypass a lock-screen... Low Unreviewed
CVE-2015-5861 was published May 17, 2022
Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated... Low Unreviewed
CVE-2015-0498 was published May 17, 2022
Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated... Low Unreviewed
CVE-2015-2567 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise SCM Strategic Sourcing component in Oracle... Low Unreviewed
CVE-2015-0485 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through... Low Unreviewed
CVE-2016-2998 was published May 17, 2022
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion... Low Unreviewed
CVE-2015-0474 was published May 17, 2022
Regular expression denial of service in markdown-link-extractor Low
CVE-2021-43308 was published for markdown-link-extractor (npm) Jun 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database