Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
Ubisoft Uplay PC before 4.6.1.3217 use weak permissions (Everyone: Full Control) for the program... High Unreviewed
CVE-2014-5453 was published May 17, 2022
Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which... High Unreviewed
CVE-2014-2942 was published May 17, 2022
The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals... High Unreviewed
CVE-2014-0326 was published May 17, 2022
The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute... High Unreviewed
CVE-2014-1987 was published May 17, 2022
The auto-format feature in the Request_Curl class in FuelPHP 1.1 through 1.7.1 allows remote... High Unreviewed
CVE-2014-1999 was published May 17, 2022
Multiple SQL injection vulnerabilities in Voice Of Web AllMyGuests 0.4.1 allow remote attackers... High Unreviewed
CVE-2014-8294 was published May 17, 2022
Multiple SQL injection vulnerabilities in the search function in pi1/class.tx_dmmjobcontrol_pi1... High Unreviewed
CVE-2014-7201 was published May 17, 2022
SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to... High Unreviewed
CVE-2014-8295 was published May 17, 2022
WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat... High Unreviewed
CVE-2014-5114 was published May 17, 2022
Honeywell FALCON XLWeb Linux controller devices 2.04.01 and earlier and FALCON XLWeb XLWebExe... High Unreviewed
CVE-2014-2717 was published May 17, 2022
Cybozu Garoon 3.7 before SP4 allows remote authenticated users to bypass intended access... High Unreviewed
CVE-2014-1996 was published May 17, 2022
Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to... High Unreviewed
CVE-2013-3930 was published May 17, 2022
SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in... High Unreviewed
CVE-2014-5017 was published May 17, 2022
Unspecified vulnerability in HP Release Control 9.x before 9.13 p3 and 9.2x before RC 9.21.0003... High Unreviewed
CVE-2014-2613 was published May 17, 2022
The IKEv2 implementation in Cisco ASA Software 8.4 before 8.4(7.15), 8.6 before 8.6(1.14), 9.0... High Unreviewed
CVE-2014-3384 was published May 17, 2022
The DNP3 feature on Rockwell Automation Allen-Bradley MicroLogix 1400 1766-Lxxxxx A FRN... High Unreviewed
CVE-2014-5410 was published May 17, 2022
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta... High Unreviewed
CVE-2014-2376 was published May 17, 2022
The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL... High Unreviewed
CVE-2012-3423 was published May 17, 2022
Datum Systems SnIP on PSM-500 and PSM-4500 devices has a hardcoded password of admin for the... High Unreviewed
CVE-2014-2951 was published May 17, 2022
Datum Systems SnIP on PSM-500 and PSM-4500 devices does not require authentication for FTP... High Unreviewed
CVE-2014-2950 was published May 17, 2022
SQL injection vulnerability in the Address visualization with Google Maps (st_address_map)... High Unreviewed
CVE-2014-6239 was published May 17, 2022
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows... High Unreviewed
CVE-2014-2375 was published May 17, 2022
ScriptHelperApi in the AVG ScriptHelper ActiveX control in ScriptHelper.exe in AVG Secure Search... High Unreviewed
CVE-2014-2956 was published May 17, 2022
Unspecified vulnerability in the Juniper Networks NetScreen Firewall products with ScreenOS... High Unreviewed
CVE-2014-3813 was published May 17, 2022
The Bitrix e-Store module before 14.0.1 for Bitrix Site Manager uses sequential values for the... High Unreviewed
CVE-2013-6788 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database