Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,586 advisories

Loading
Juniper ScreenOS 6.3 and earlier allows remote attackers to cause a denial of service (crash and... High Unreviewed
CVE-2014-2842 was published May 17, 2022
Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery... High Unreviewed
CVE-2014-2882 was published May 17, 2022
Juniper Junos 11.4 before 11.4R12, 12.1 before 12.1R10, 12.1X44 before 12.1X44-D35, 12.1X45... High Unreviewed
CVE-2014-3819 was published May 17, 2022
Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates... High Unreviewed
CVE-2014-1849 was published May 17, 2022
Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07... High Unreviewed
CVE-2014-0528 was published May 17, 2022
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0... High Unreviewed
CVE-2014-0527 was published May 17, 2022
main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x... High Unreviewed
CVE-2014-2286 was published May 17, 2022
x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote... High Unreviewed
CVE-2013-7383 was published May 17, 2022
kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for... High Unreviewed
CVE-2011-3180 was published May 17, 2022
SQL injection vulnerability in demo/ads.php in Artifectx xClassified 1.2 allows remote attackers... High Unreviewed
CVE-2014-4741 was published May 17, 2022
Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28... High Unreviewed
CVE-2014-2136 was published May 17, 2022
The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS... High Unreviewed
CVE-2014-0525 was published May 17, 2022
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow... High Unreviewed
CVE-2014-0522 was published May 17, 2022
Cross-site Scripting in Jenkins Global Variable String Parameter Plugin High
CVE-2022-30962 was published for org.jenkins-ci.plugins:global-variable-string-parameter (Maven) May 18, 2022
NotMyFault
Cross site scripting in Jenkins Selection tasks Plugin High
CVE-2022-30967 was published for org.jvnet.hudson.plugins:selection-tasks-plugin (Maven) May 18, 2022
NotMyFault
Buffer overflow in php-luasandbox in the Scribuntu extension for MediaWiki before 1.19.10, 1.2x... High Unreviewed
CVE-2013-4571 was published May 17, 2022
Heap-based buffer overflow in Cisco WebEx Recording Format (WRF) player T27 LD before SP32 EP16,... High Unreviewed
CVE-2014-2134 was published May 17, 2022
Multiple SQL injection vulnerabilities in Caldera 9.20 allow remote attackers to execute... High Unreviewed
CVE-2014-2934 was published May 17, 2022
An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly restrict... High Unreviewed
CVE-2013-7364 was published May 17, 2022
The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 has a hardcoded... High Unreviewed
CVE-2014-0354 was published May 17, 2022
The CreateProcess method in the BWOCXRUN.BwocxrunCtrl.1 ActiveX control in bwocxrun.ocx in... High Unreviewed
CVE-2014-0773 was published May 17, 2022
Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28... High Unreviewed
CVE-2014-2135 was published May 17, 2022
Unspecified vulnerability in SAP adminadapter allows remote attackers to read or write to... High Unreviewed
CVE-2013-7360 was published May 17, 2022
SQL injection vulnerability in SAP BI Universal Data Integration allows remote attackers to... High Unreviewed
CVE-2013-7355 was published May 17, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux... High Unreviewed
CVE-2019-18897 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database