Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
Buffer overflow in Cybozu Office 9 and 10 before 10.1.0, Mailwise 4 and 5 before 5.1.4, and Dezie... High Unreviewed
CVE-2014-5314 was published May 17, 2022
Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers... High Unreviewed
CVE-2014-5424 was published May 17, 2022
rendering/svg/RenderSVGText.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 does not... High Unreviewed
CVE-2011-1798 was published May 17, 2022
rendering/svg/RenderSVGResourceFilter.cpp in WebCore in WebKit in Google Chrome before 11.0.696... High Unreviewed
CVE-2011-1793 was published May 17, 2022
ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier has a default... High Unreviewed
CVE-2014-9406 was published May 17, 2022
EMC Documentum Content Server before 6.7 SP1 P29, 6.7 SP2 before P18, 7.0 before P16, and 7.1... High Unreviewed
CVE-2014-4626 was published May 17, 2022
Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on... High Unreviewed
CVE-2014-8449 was published May 17, 2022
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow... High Unreviewed
CVE-2014-8458 was published May 17, 2022
The Server Side Includes (SSI) implementation in the File Upload BBS component in ULTRAPOP.JP i... High Unreviewed
CVE-2014-7260 was published May 17, 2022
A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4... High Unreviewed
CVE-2021-22900 was published May 24, 2022
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow... High Unreviewed
CVE-2014-8456 was published May 17, 2022
Digicom DG-5514T ADSL router with firmware 3.2 generates predictable session IDs, which allows... High Unreviewed
CVE-2014-8496 was published May 17, 2022
FUJITSU F-12C, ARROWS Tab LTE F-01D, ARROWS Kiss F-03D, and REGZA Phone T-01D for Android allows... High Unreviewed
CVE-2014-7253 was published May 17, 2022
A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who... High Unreviewed
CVE-2021-22952 was published May 24, 2022
UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of... High Unreviewed
CVE-2021-22882 was published May 24, 2022
An improper access control vulnerability exists in Citrix Workspace App for Windows potentially... High Unreviewed
CVE-2021-22907 was published May 24, 2022
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0... High Unreviewed
CVE-2014-9165 was published May 17, 2022
Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11... High Unreviewed
CVE-2014-6035 was published May 17, 2022
Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8.0... High Unreviewed
CVE-2014-8388 was published May 17, 2022
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1... High Unreviewed
CVE-2021-22957 was published May 24, 2022
Uncontrolled Resource Consumption in node-opcua High
CVE-2022-21208 was published for node-opcua (npm) Aug 24, 2022
The AJAX action, wp_ajax_ninja_forms_sendwp_remote_install_handler, did not have a capability... High Unreviewed
CVE-2021-24163 was published May 24, 2022
Lack of authorisation checks in the Modern Events Calendar Lite WordPress plugin, versions before... High Unreviewed
CVE-2021-24146 was published May 24, 2022
Chakra Scripting Engine and ChakraCore Vulnerable to Memory Corruption High
CVE-2021-42279 was published for Microsoft.ChakraCore (NuGet) May 24, 2022
A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for... High Unreviewed
CVE-2021-24027 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database