Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
The SunRPC inspection engine in Cisco ASA Software 7.2 before 7.2(5.14), 8.2 before 8.2(5.51), 8... High Unreviewed
CVE-2014-3387 was published May 17, 2022
Uncontrolled Resource Consumption in opcua High
CVE-2022-25888 was published for opcua (Rust) Aug 24, 2022
McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to execute... High Unreviewed
CVE-2014-8533 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities on the TP-LINK WR1043N router with... High Unreviewed
CVE-2013-2645 was published May 17, 2022
M/Monit 3.3.2 and earlier does not verify the original password before changing passwords, which... High Unreviewed
CVE-2014-6607 was published May 17, 2022
Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote... High Unreviewed
CVE-2014-8530 was published May 17, 2022
Cisco IOS XR on ASR 9000 devices does not properly use compression for port-range and address... High Unreviewed
CVE-2014-3396 was published May 17, 2022
Multiple SQL injection vulnerabilities in TestLink 1.9.11 allow remote authenticated users to... High Unreviewed
CVE-2014-5308 was published May 17, 2022
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2... High Unreviewed
CVE-2014-8244 was published May 17, 2022
The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code... High Unreviewed
CVE-2014-8346 was published May 17, 2022
Unspecified vulnerability in administrative interfaces in ArubaOS 6.3.1.11, 6.3.1.11-FIPS, 6.4.2... High Unreviewed
CVE-2014-7299 was published May 17, 2022
The Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication and gain... High Unreviewed
CVE-2013-3092 was published May 17, 2022
Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0... High Unreviewed
CVE-2014-6546 was published May 17, 2022
Race condition in the Health and Performance Monitoring (HPM) for ASDM feature in Cisco ASA... High Unreviewed
CVE-2014-3385 was published May 17, 2022
The Clientless SSL VPN portal in Cisco ASA Software 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8... High Unreviewed
CVE-2014-3392 was published May 17, 2022
Joomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows remote attackers to authenticate and... High Unreviewed
CVE-2014-7984 was published May 17, 2022
Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, as used in Google Chrome... High Unreviewed
CVE-2014-7967 was published May 17, 2022
The DNS inspection engine in Cisco ASA Software 9.0 before 9.0(4.13), 9.1 before 9.1(5.7), and 9... High Unreviewed
CVE-2014-3388 was published May 17, 2022
The XMonad.Hooks.DynamicLog module in xmonad-contrib before 0.11.2 allows remote attackers to... High Unreviewed
CVE-2013-1436 was published May 17, 2022
Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled,... High Unreviewed
CVE-2014-0074 was published May 17, 2022
The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via shell... High Unreviewed
CVE-2014-5519 was published May 17, 2022
The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers... High Unreviewed
CVE-2014-2374 was published May 17, 2022
The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640... High Unreviewed
CVE-2014-8656 was published May 17, 2022
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to... High Unreviewed
CVE-2014-0485 was published May 17, 2022
The MySQL database in McAfee Network Data Loss Prevention (NDLP) before 9.3 does not require a... High Unreviewed
CVE-2014-8522 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database