Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do... High Unreviewed
CVE-2014-2378 was published May 17, 2022
Unspecified vulnerability in Citrix VDI-In-A-Box 5.3.x before 5.3.8 and 5.4.x before 5.4.4 allows... High Unreviewed
CVE-2014-3780 was published May 17, 2022
EMC Documentum D2 3.1 before P20, 3.1 SP1 before P02, 4.0 before P10, 4.1 before P13, and 4.2... High Unreviewed
CVE-2014-2504 was published May 17, 2022
SQL injection vulnerability in lib/admin.php in tenfourzero Shutter 0.1.4 allows remote attackers... High Unreviewed
CVE-2014-3904 was published May 17, 2022
Unspecified vulnerability in the Authentication Module in TIBCO Spotfire Server before 4.5.2, 5.0... High Unreviewed
CVE-2014-5285 was published May 17, 2022
Multiple SQL injection vulnerabilities in Bank Soft Systems (BSS) RBS BS-Client 3.17.9 allow... High Unreviewed
CVE-2014-4197 was published May 17, 2022
Multiple array index errors in the MyHeritage SEQueryObject ActiveX control (SearchEngineQuery... High Unreviewed
CVE-2013-2602 was published May 17, 2022
Multiple unspecified vulnerabilities in OpenAL32.dll in JOAL 2.0-rc11, as used in JOGAMP, allow... High Unreviewed
CVE-2013-4099 was published May 17, 2022
Unspecified vulnerability in the AJAX autocompletion callback in the Biblio Autocomplete module 6... High Unreviewed
CVE-2014-5250 was published May 17, 2022
TeamPass before 2.1.20 allows remote attackers to bypass access restrictions via the language... High Unreviewed
CVE-2014-3771 was published May 17, 2022
The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures,... High Unreviewed
CVE-2014-0328 was published May 17, 2022
Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 uses weak... High Unreviewed
CVE-2014-2380 was published May 17, 2022
Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12... High Unreviewed
CVE-2014-3817 was published May 17, 2022
SQL injection vulnerability in OSK Advance-Flow 4.41 and earlier and Advance-Flow Forms 4.41 and... High Unreviewed
CVE-2014-3906 was published May 17, 2022
Unrestricted file upload vulnerability in Attachmate Verastream Process Designer (VPD) before R6... High Unreviewed
CVE-2014-0607 was published May 17, 2022
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner... High Unreviewed
CVE-2014-4501 was published May 17, 2022
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote... High Unreviewed
CVE-2012-1166 was published May 17, 2022
F5 BIG-IQ Cloud and Security 4.0.0 through 4.1.0 allows remote authenticated users to change the... High Unreviewed
CVE-2014-3220 was published May 17, 2022
The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3... High Unreviewed
CVE-2013-2595 was published May 17, 2022
DataLife Engine (DLE) 9.7 allows remote attackers to execute arbitrary PHP code via the catlist[]... High Unreviewed
CVE-2013-1412 was published May 17, 2022
Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 allows remote attackers to... High Unreviewed
CVE-2014-3791 was published May 17, 2022
** DISPUTED ** Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which... High Unreviewed
CVE-2014-2941 was published May 17, 2022
The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on... High Unreviewed
CVE-2014-0327 was published May 17, 2022
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and... High Unreviewed
CVE-2013-6117 was published May 17, 2022
Stack-based buffer overflow in BKESimmgr.exe in the Expanded Test Functions package in Yokogawa... High Unreviewed
CVE-2014-0782 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database