Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

11,473 advisories

Loading
A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions... High Unreviewed
CVE-2018-7235 was published May 13, 2022
A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions... Critical Unreviewed
CVE-2018-7231 was published May 13, 2022
CRLF injection vulnerability in spacewalk-java before 2.1.148-1 and Red Hat Network (RHN)... Moderate Unreviewed
CVE-2013-1869 was published May 13, 2022
The monitoring probe display in spacewalk-java before 2.1.148-1 and Red Hat Network (RHN)... Moderate Unreviewed
CVE-2010-2236 was published May 13, 2022
The client detection protocol in Valve Steam allows remote attackers to cause a denial of service... Moderate Unreviewed
CVE-2015-4016 was published May 13, 2022
OSIsoft PI SQL Data Access Server (aka OLE DB) 2016 1.5 allows remote authenticated users to... Moderate Unreviewed
CVE-2016-4530 was published May 13, 2022
MikroTik RouterOS 3.x through 3.13 and 2.x through 2.9.51 allows remote attackers to modify... Moderate Unreviewed
CVE-2008-6976 was published May 13, 2022
Improper Input Validation in JGroups Critical
CVE-2016-2141 was published for org.jgroups:jgroups (Maven) May 13, 2022
sharonbz
Microsoft Internet Explorer 6 through 9 does not properly handle unspecified character sequences,... Moderate Unreviewed
CVE-2011-1962 was published May 13, 2022
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software... High Unreviewed
CVE-2019-1740 was published May 13, 2022
Cisco IOS 12.0 through 15.6, Adaptive Security Appliance (ASA) Software 7.0.1 through 9.7.1.2, NX... Moderate Unreviewed
CVE-2017-6770 was published May 13, 2022
Inappropriate implementation of the web payments API on blob: and data: schemes in Web Payments... Moderate Unreviewed
CVE-2017-5110 was published May 13, 2022
Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux,... High Unreviewed
CVE-2017-5121 was published May 13, 2022
Inappropriate implementation in Blink in Google Chrome prior to 59.0.3071.86 for Mac, Windows,... Moderate Unreviewed
CVE-2017-5079 was published May 13, 2022
Inappropriate implementation of unload handler handling in permission prompts in Google Chrome... Moderate Unreviewed
CVE-2017-5109 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.104 for Mac... Moderate Unreviewed
CVE-2017-5089 was published May 13, 2022
dwarf_leb.c in libdwarf allows attackers to cause a denial of service (SIGSEGV). Moderate Unreviewed
CVE-2015-8538 was published May 13, 2022
PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of... High Unreviewed
CVE-2017-18359 was published May 13, 2022
Inappropriate implementation in modal dialog handling in Blink in Google Chrome prior to 60.0... Moderate Unreviewed
CVE-2017-5093 was published May 13, 2022
Inappropriate implementation in Blink in Google Chrome prior to 59.0.3071.86 for Mac, Windows,... Moderate Unreviewed
CVE-2017-5083 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.86 for Mac,... Moderate Unreviewed
CVE-2017-5076 was published May 13, 2022
Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for... Low Unreviewed
CVE-2017-5081 was published May 13, 2022
Remote code execution in PATCH requests in Spring Data REST Critical
CVE-2017-8046 was published for org.springframework.data:spring-data-rest-core (Maven) May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.86 for Windows and... Moderate Unreviewed
CVE-2017-5086 was published May 13, 2022
Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.86 for Linux... Moderate Unreviewed
CVE-2017-5071 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database