Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,587 advisories

Loading
body-parser-xml vulnerable to Prototype Pollution High
CVE-2021-3666 was published for body-parser-xml (npm) Sep 14, 2021
Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X,... High Unreviewed
CVE-2013-1380 was published May 17, 2022
Cisco IOS 15.3M before 15.3(3)M2 and IOS XE 3.10.xS before 3.10.2S allow remote attackers to... High Unreviewed
CVE-2014-2106 was published May 17, 2022
The TCP reassembly function in the inet module in FreeBSD 8.3 before p16, 8.4 before p9, 9.1... High Unreviewed
CVE-2014-3000 was published May 17, 2022
Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.2 through 3.7 before 3.7.5S and 3.8 through 3... High Unreviewed
CVE-2014-2108 was published May 17, 2022
Multiple SQL injection vulnerabilities in NICE Recording eXpress (aka Cybertech eXpress) 6.5.7... High Unreviewed
CVE-2014-4305 was published May 17, 2022
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700,... High Unreviewed
CVE-2014-4190 was published May 17, 2022
The boot implementation in Google Chrome OS before 33.0.1750.152 does not properly consider file... High Unreviewed
CVE-2014-1708 was published May 17, 2022
Heap-based buffer overflow in PDFCore8.dll in Nuance PDF Reader before 8.1 allows remote... High Unreviewed
CVE-2013-0732 was published May 17, 2022
Tenda TX9 Pro v22.03.02.10 was discovered to contain a stack overflow via the list parameter at ... High Unreviewed
CVE-2022-45337 was published Nov 30, 2022
LibreDWG v0.12.4.4643 was discovered to contain a heap buffer overflow via the function... High Unreviewed
CVE-2022-45332 was published Nov 30, 2022
HTSJDK is vulnerable to exposure of resource(s) to the wrong sphere High
CVE-2022-21126 was published for com.github.samtools:htsjdk (Maven) Nov 29, 2022
A vulnerability was found in Sapido BR270n, BRC76n, GR297 and RB1732 and classified as critical.... High Unreviewed
CVE-2021-4242 was published Nov 30, 2022
An Insecure Direct Object Reference (IDOR) vulnerability in the password reset function of Telos... High Unreviewed
CVE-2022-43326 was published Nov 29, 2022
Buffer overflow in Drive Control Program (DCP) in EMC AlphaStor 4.0 before build 814 allows... High Unreviewed
CVE-2013-0930 was published May 17, 2022
The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0... High Unreviewed
CVE-2014-2164 was published May 17, 2022
The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0... High Unreviewed
CVE-2014-2165 was published May 17, 2022
The ATEN CN8000 remote-access unit with firmware 1.6.154 and earlier allows remote attackers to... High Unreviewed
CVE-2014-1997 was published May 17, 2022
Unspecified vulnerability in the Linux Network Connect client in Juniper Junos Pulse Secure... High Unreviewed
CVE-2014-2292 was published May 17, 2022
Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute... High Unreviewed
CVE-2013-5354 was published May 17, 2022
The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5... High Unreviewed
CVE-2014-2503 was published May 17, 2022
Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2... High Unreviewed
CVE-2014-2084 was published May 17, 2022
COPA-DATA zenon DNP3 NG driver (DNP3 master) 7.10 and 7.11 through 7.11 SP0 build 10238 and zenon... High Unreviewed
CVE-2014-2345 was published May 17, 2022
Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 allow remote attackers to... High Unreviewed
CVE-2014-2175 was published May 17, 2022
The SIP implementation in Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0... High Unreviewed
CVE-2014-2162 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database