Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,586 advisories

Loading
Multiple SQL injection vulnerabilities in GoAutoDial GoAdmin CE before 3.3-1421902800 allow... High Unreviewed
CVE-2015-2843 was published May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before... High Unreviewed
CVE-2015-3106 was published May 17, 2022
Samsung Security Manager (SSM) before 1.31 allows remote attackers to execute arbitrary code by... High Unreviewed
CVE-2015-3435 was published May 17, 2022
The Framework Daemon in AlienVault Unified Security Management before 4.15 allows remote... High Unreviewed
CVE-2015-3446 was published May 17, 2022
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial... High Unreviewed
CVE-2015-1730 was published May 14, 2022
Multiple SQL injection vulnerabilities in the ratings module in the Users Ultra plugin before 1.5... High Unreviewed
CVE-2015-4109 was published May 14, 2022
Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC server, which allows local... High Unreviewed
CVE-2014-7872 was published May 17, 2022
The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to... High Unreviewed
CVE-2015-1318 was published May 14, 2022
A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows... High Unreviewed
CVE-2015-0691 was published May 17, 2022
CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2015-1157 was published May 17, 2022
Unrestricted file upload vulnerability in admin/scripts/FileUploader/php.php in the ReFlex... High Unreviewed
CVE-2015-4133 was published May 17, 2022
SQL injection vulnerability in related.php in Milw0rm Clone Script 1.0 allows remote attackers to... High Unreviewed
CVE-2015-4137 was published May 17, 2022
The __driver_rfc4106_decrypt function in arch/x86/crypto/aesni-intel_glue.c in the Linux kernel... High Unreviewed
CVE-2015-3331 was published May 14, 2022
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in... High Unreviewed
CVE-2015-3809 was published May 17, 2022
Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows remote attackers... High Unreviewed
CVE-2015-2806 was published May 14, 2022
BitTorrent Sync allows remote attackers to execute arbitrary commands via a crafted btsync: link. High Unreviewed
CVE-2015-2846 was published May 17, 2022
Unspecified vulnerability in Boosted Boards skateboards allows physically proximate attackers to... High Unreviewed
CVE-2015-2247 was published May 17, 2022
Multiple SQL injection vulnerabilities in ClipBucket 2.6 Revision 738 and earlier allow remote... High Unreviewed
CVE-2012-5849 was published May 17, 2022
Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X... High Unreviewed
CVE-2015-3089 was published May 17, 2022
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21... High Unreviewed
CVE-2015-1472 was published May 14, 2022
Multiple SQL injection vulnerabilities in the Simple Ads Manager plugin before 2.7.97 for... High Unreviewed
CVE-2015-2824 was published May 14, 2022
Unrestricted file upload vulnerability in app/lib/mlf.pl in C-BOARD Moyuku before 1.03b3 allows... High Unreviewed
CVE-2015-0877 was published May 17, 2022
The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length... High Unreviewed
CVE-2015-1465 was published May 17, 2022
The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E,... High Unreviewed
CVE-2015-0932 was published May 17, 2022
The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote... High Unreviewed
CVE-2015-2816 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database