Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to... High Unreviewed
CVE-2014-8001 was published May 17, 2022
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before... High Unreviewed
CVE-2014-8551 was published May 17, 2022
SQL injection vulnerability in the getProfile function in system/profile.functions.php in Free... High Unreviewed
CVE-2015-1364 was published May 17, 2022
Multiple SQL injection vulnerabilities in the administrative backend in Sefrengo before 1.6.1... High Unreviewed
CVE-2015-0919 was published May 17, 2022
SQL injection vulnerability in Proticaret E-Commerce 3.0 allows remote attackers to execute... High Unreviewed
CVE-2014-9237 was published May 17, 2022
Use-after-free vulnerability in decode_slice.cpp in Cisco OpenH264 1.2.0 and earlier allows... High Unreviewed
CVE-2014-8002 was published May 17, 2022
Unrestricted file upload vulnerability in Huawei Honor Cube Wireless Router WS860s before... High Unreviewed
CVE-2014-9134 was published May 17, 2022
The RACInstaller.StateCtrl.1 ActiveX control in InstallerDlg.dll in RealNetworks GameHouse... High Unreviewed
CVE-2013-2603 was published May 17, 2022
ZTE ZXDSL 831CII has a default password of admin for the admin account, which allows remote... High Unreviewed
CVE-2014-9183 was published May 17, 2022
Unrestricted file upload vulnerability in Mrs. Shiromuku Perl CGI shiromuku(bu2)BBS before 2.91... High Unreviewed
CVE-2015-0868 was published May 17, 2022
Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7... High Unreviewed
CVE-2014-8511 was published May 17, 2022
The Services module 7.x-3.x before 7.x-3.10 for Drupal does not properly limit the rate of... High Unreviewed
CVE-2014-9151 was published May 17, 2022
The Protected Pages module 7.x-2.x before 7.x-2.4 for Drupal allows remote attackers to bypass... High Unreviewed
CVE-2014-9024 was published May 17, 2022
Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not properly restrict access to... High Unreviewed
CVE-2014-6626 was published May 17, 2022
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote... High Unreviewed
CVE-2014-9455 was published May 17, 2022
WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2011-1797 was published May 17, 2022
Aruba Networks ClearPass before 6.3.5 and 6.4.x before 6.4.1 allows remote attackers to execute... High Unreviewed
CVE-2014-6627 was published May 17, 2022
Multiple buffer overflows in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll... High Unreviewed
CVE-2011-5288 was published May 17, 2022
The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX 4.5.0.9 does not... High Unreviewed
CVE-2011-5292 was published May 17, 2022
Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow remote... High Unreviewed
CVE-2011-5313 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows remote attackers to affect... High Unreviewed
CVE-2014-6508 was published May 17, 2022
Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7... High Unreviewed
CVE-2014-8512 was published May 17, 2022
Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7... High Unreviewed
CVE-2014-8513 was published May 17, 2022
Buffer overflow in the Download method in a certain ActiveX control in MDIEEx.dll in Gogago... High Unreviewed
CVE-2011-5295 was published May 17, 2022
The Policy Manager in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote... High Unreviewed
CVE-2014-6625 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database