Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,586 advisories

Loading
Cross Site Request Forgery in Jenkins Storable Configs Plugin High
CVE-2022-30972 was published for org.jvnet.hudson.plugins:storable-configs-plugin (Maven) May 18, 2022
NotMyFault
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an... High Unreviewed
CVE-2019-4212 was published May 24, 2022
Multiple integer overflows in the JPEG engine drivers in the MSM camera driver for the Linux... High Unreviewed
CVE-2013-4736 was published May 17, 2022
The web interface in Schrack Technik microControl with firmware before 1.7.0 (937) has a... High Unreviewed
CVE-2014-5396 was published May 17, 2022
The DNP3 driver in CG Automation ePAQ-9410 Substation Gateway allows remote attackers to cause a... High Unreviewed
CVE-2014-0761 was published May 17, 2022
The cmd_boot function in app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed... High Unreviewed
CVE-2014-4325 was published May 17, 2022
Unspecified vulnerability in Piwigo before 2.6.3 has unknown impact and attack vectors, related... High Unreviewed
CVE-2014-4648 was published May 17, 2022
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0... High Unreviewed
CVE-2012-2052 was published May 17, 2022
The Juniper Networks NetScreen Firewall devices with ScreenOS before 6.3r17, when configured to... High Unreviewed
CVE-2014-3814 was published May 17, 2022
Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12... High Unreviewed
CVE-2012-2027 was published May 17, 2022
An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur... High Unreviewed
CVE-2019-11810 was published May 24, 2022
A vulnerability found in postgresql. On this security issue an attack requires permission to... High Unreviewed
CVE-2022-2625 was published Aug 19, 2022
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030... High Unreviewed
CVE-2022-44356 was published Nov 29, 2022
Deserialization of Untrusted Data in Apache Hadoop YARN High
CVE-2021-25642 was published for org.apache.hadoop:hadoop-yarn-server (Maven) Aug 26, 2022
Multiple SQL injection vulnerabilities in TeamPass before 2.1.20 allow remote attackers to... High Unreviewed
CVE-2014-3773 was published May 17, 2022
SAP Print and Output Management has hardcoded credentials, which makes it easier for remote... High Unreviewed
CVE-2014-2751 was published May 17, 2022
SAP Business Object Processing Framework (BOPF) for ABAP has hardcoded credentials, which makes... High Unreviewed
CVE-2014-2752 was published May 17, 2022
TeamPass before 2.1.20 allows remote attackers to bypass access restrictions via a request to... High Unreviewed
CVE-2014-3772 was published May 17, 2022
SQL injection vulnerability in admin/options/logs.php in Status2k allows remote authenticated... High Unreviewed
CVE-2014-5089 was published May 17, 2022
Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.3.21 allow remote... High Unreviewed
CVE-2014-3973 was published May 17, 2022
SQL injection vulnerability in categories-x.php in WebTitan before 4.04 allows remote attackers... High Unreviewed
CVE-2014-4307 was published May 17, 2022
Stack-based buffer overflow in the sub_read_line_sami function in subreader.c in MPlayer, as used... High Unreviewed
CVE-2011-3625 was published May 17, 2022
Multiple SQL injection vulnerabilities in Videos Tube 1.0 allow remote attackers to execute... High Unreviewed
CVE-2014-3962 was published May 17, 2022
Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE... High Unreviewed
CVE-2014-3912 was published May 17, 2022
wiretap/libpcap.c in the libpcap file parser in Wireshark 1.10.x before 1.10.4 allows remote... High Unreviewed
CVE-2014-4174 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database