Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10454 was published May 24, 2022
Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise... Low Unreviewed
CVE-2016-0446 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and... Low Unreviewed
CVE-2016-0406 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via... Low Unreviewed
CVE-2016-0431 was published May 17, 2022
Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware... Low Unreviewed
CVE-2010-2381 was published May 17, 2022
Ingenico Telium 2 POS Telium2 OS allow bypass of file-reading restrictions via the NTPT3 protocol... Low Unreviewed
CVE-2018-17766 was published May 24, 2022
svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in... Low Unreviewed
CVE-2013-4262 was published May 17, 2022
SAP Netweaver 7.40 improperly logs (1) DUI and (2) DUJ events in the SAP Security Audit Log as... Low Unreviewed
CVE-2016-7437 was published May 17, 2022
The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows... Low Unreviewed
CVE-2015-8100 was published May 17, 2022
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise... Low Unreviewed
CVE-2015-2633 was published May 17, 2022
JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2... Low Unreviewed
CVE-2014-0059 was published May 17, 2022
The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3... Low Unreviewed
CVE-2015-7885 was published May 17, 2022
IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 mishandles authorization, which... Low Unreviewed
CVE-2016-2874 was published May 17, 2022
CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, which... Low Unreviewed
CVE-2015-5898 was published May 17, 2022
The default configuration of EMC VPLEX GeoSynchrony 5.4 SP1 before P3 stores cleartext NAVISPHERE... Low Unreviewed
CVE-2015-6847 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention... Low Unreviewed
CVE-2015-2760 was published May 17, 2022
Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client... Low Unreviewed
CVE-2015-7080 was published May 17, 2022
The private-browsing implementation in WebKit in Apple Safari before 6.2.5, 7.x before 7.1.5, and... Low Unreviewed
CVE-2015-1127 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Next Generation 4.x before 4.0.7... Low Unreviewed
CVE-2015-0125 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x and 3.x before 3.0.1... Low Unreviewed
CVE-2015-0124 was published May 17, 2022
Stored XSS exists in the Appointment Booking Calendar plugin before 1.3.35 for WordPress. In the... Low Unreviewed
CVE-2020-9371 was published May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10455 was published May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10450 was published May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10448 was published May 24, 2022
/usr/lpp/mmfs/bin/gpfs.snap in IBM General Parallel File System (GPFS) 4.1 before 4.1.0.7... Low Unreviewed
CVE-2015-1890 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database