GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
11,472 advisories
Filter by severity
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not...
High
Unreviewed
CVE-2013-0004
was published
May 5, 2022
The WCF Replace function in the Open Data (aka OData) protocol implementation in Microsoft .NET...
High
Unreviewed
CVE-2013-0005
was published
May 5, 2022
A Code Execution vulnerability exists in select.py when using python-mode 2012-12-19.
High
Unreviewed
CVE-2013-5106
was published
May 5, 2022
PDFKit Improper Input Validation vulnerability
Critical
CVE-2013-1607
was published
for
pdfkit
(RubyGems)
May 5, 2022
haskell-tls-extra before 0.6.1 has Basic Constraints attribute vulnerability may lead to Man in...
High
Unreviewed
CVE-2013-0243
was published
May 5, 2022
OpenShift cartridge allows remote URL retrieval
High
Unreviewed
CVE-2013-2103
was published
May 5, 2022
Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, contain world-writable...
Critical
Unreviewed
CVE-2013-7171
was published
May 5, 2022
Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and...
High
Unreviewed
CVE-2013-7172
was published
May 5, 2022
Dolibarr ERP/CRM 3.3.1 does not properly validate user input in viewimage.php and barcode.lib.php...
Critical
Unreviewed
CVE-2013-2093
was published
May 5, 2022
ReviewBoard and Djblets library are vulnerable to code execution
Critical
CVE-2013-4409
was published
for
ReviewBoard
(pip)
May 5, 2022
Cryptocat before 2.0.22 has Remote Denial of Service via username
High
Unreviewed
CVE-2013-4100
was published
May 5, 2022
evince is missing a check on number of pages which can lead to a segmentation fault
Moderate
Unreviewed
CVE-2013-3718
was published
May 5, 2022
Symfony collectionCascaded and collectionCascadedDeeply fields security bypass
High
CVE-2013-4751
was published
for
symfony/symfony
(Composer)
May 5, 2022
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
Critical
Unreviewed
CVE-2013-2259
was published
May 5, 2022
GLPI 0.83.7 has Local File Inclusion in common.tabs.php.
High
Unreviewed
CVE-2013-2227
was published
May 5, 2022
Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds.
Moderate
Unreviewed
CVE-2013-0180
was published
May 5, 2022
Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm.
Moderate
Unreviewed
CVE-2013-0178
was published
May 5, 2022
cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh in OpenShift does not properly...
High
Unreviewed
CVE-2013-0165
was published
May 5, 2022
yum does not properly handle bad metadata, which allows an attacker to cause a denial of service...
Critical
Unreviewed
CVE-2013-1910
was published
May 5, 2022
The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion.
Critical
Unreviewed
CVE-2013-7483
was published
May 5, 2022
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could allow an...
High
Unreviewed
CVE-2013-7333
was published
May 5, 2022
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an...
High
Unreviewed
CVE-2022-20779
was published
May 5, 2022
The nsWindow implementation in the browser engine in Mozilla Firefox before 3.6.28 and 4.x...
High
Unreviewed
CVE-2012-0463
was published
May 4, 2022
Bugzilla 2.x and 3.x before 3.4.14, 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4,...
Moderate
Unreviewed
CVE-2012-0448
was published
May 4, 2022
ProTip!
Advisories are also available from the
GraphQL API