GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,189

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

137,226 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS... Moderate Unreviewed

CVE-2016-1141 was published May 17, 2022

IBM Spectrum Scale 4.1.1.x before 4.1.1.4 and 4.2.x before 4.2.0.1, in certain LDAP File protocol... Moderate Unreviewed

CVE-2015-7488 was published May 17, 2022

Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0... Moderate Unreviewed

CVE-2015-7469 was published May 17, 2022

The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sensitive... Moderate Unreviewed

CVE-2016-1323 was published May 17, 2022

The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote... Moderate Unreviewed

CVE-2016-1299 was published May 17, 2022

SQL injection vulnerability in Emerson AMS Device Manager before 13 allows remote authenticated... Moderate Unreviewed

CVE-2015-1008 was published May 17, 2022

Zenoss Core through 5 Beta 3 uses a weak algorithm to hash passwords, which makes it easier for... Moderate Unreviewed

CVE-2014-9251 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.x, 1.0.22.7, 1.1.x, 1.24.1... Moderate Unreviewed

CVE-2013-6111 was published May 17, 2022

The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9... Moderate Unreviewed

CVE-2015-4989 was published May 17, 2022

Directory traversal vulnerability in IBM Security QRadar SIEM 7.2.x before 7.2.5 Patch 6 allows... Moderate Unreviewed

CVE-2015-2007 was published May 17, 2022

The Scheduler in IBM Maximo Asset Management 7.5 before 7.5.0.8 IF6 and 7.6 before 7.6.0.1 FP1... Moderate Unreviewed

CVE-2015-7396 was published May 17, 2022

HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus 4.2.x before 4.2.1 allow remote... Moderate Unreviewed

CVE-2014-5040 was published May 17, 2022

Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0... Moderate Unreviewed

CVE-2015-7468 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8... Moderate Unreviewed

CVE-2015-7491 was published May 17, 2022

Zenoss Core through 5 Beta 3 does not require a password for modifying the pager command string,... Moderate Unreviewed

CVE-2014-6260 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Emptoris Contract Management 9.5.0.x before 9.5.0... Moderate Unreviewed

CVE-2015-7398 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in IBM UrbanCode Deploy 6.0 before 6.0.1.12,... Moderate Unreviewed

CVE-2015-7415 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Security QRadar SIEM 7.2.x before 7.2.6 allows... Moderate Unreviewed

CVE-2015-7409 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Security QRadar SIEM 7.1.x before 7... Moderate Unreviewed

CVE-2015-4957 was published May 17, 2022

Wiki Server in Apple OS X Server before 4.1 allows remote attackers to bypass intended... Moderate Unreviewed

CVE-2015-1151 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote... Moderate Unreviewed

CVE-2016-2287 was published May 17, 2022

IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment... Moderate Unreviewed

CVE-2016-0232 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on... Moderate Unreviewed

CVE-2016-1488 was published May 17, 2022

Huawei TE30, TE40, TE50, and TE60 multimedia video conferencing endpoints with software before... Moderate Unreviewed

CVE-2015-8673 was published May 17, 2022

ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to discover the... Moderate Unreviewed

CVE-2015-7787 was published May 17, 2022

Previous 1…392…400 Next

Previous 1 2 … 390 391 392 393 394 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,226 advisories