GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,144

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

137,186 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via... Moderate Unreviewed

CVE-2016-1140 was published May 17, 2022

Ipswitch MOVEit DMZ before 8.2 provides different error messages for authentication attempts... Moderate Unreviewed

CVE-2015-7680 was published May 17, 2022

System Server in Android 6.0 before 2015-12-01 allows attackers to obtain sensitive information... Moderate Unreviewed

CVE-2015-6625 was published May 17, 2022

Buffer overflow in IBM i Access 7.1 on Windows allows local users to cause a denial of service ... Moderate Unreviewed

CVE-2015-7422 was published May 17, 2022

IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive cleartext web-services... Moderate Unreviewed

CVE-2015-7438 was published May 17, 2022

Corega CG-WLNCM4G devices provide an open DNS resolver, which allows remote attackers to cause a... Moderate Unreviewed

CVE-2015-7794 was published May 17, 2022

Corega CG-WLBARAGM devices provide an open proxy service, which allows remote attackers to... Moderate Unreviewed

CVE-2015-7793 was published May 17, 2022

Unspecified vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative... Moderate Unreviewed

CVE-2015-1971 was published May 17, 2022

Cisco Secure Access Control Server (ACS) provides an unintentional administration web interface... Moderate Unreviewed

CVE-2014-2130 was published May 17, 2022

Cisco Intelligent Automation for Cloud in Cisco Cloud Portal does not properly restrict the... Moderate Unreviewed

CVE-2014-3297 was published May 17, 2022

SQL injection vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1 allows remote... Moderate Unreviewed

CVE-2015-5023 was published May 17, 2022

Bluetooth in Android 4.4 and 5.x before 5.1.1 LMY48Z allows user-assisted remote attackers to... Moderate Unreviewed

CVE-2015-6618 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Connections 3.x before 3.0.1.1 CR3, 4.0 before... Moderate Unreviewed

CVE-2015-5035 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1... Moderate Unreviewed

CVE-2015-7402 was published May 17, 2022

Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password... Moderate Unreviewed

CVE-2015-8675 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Host On-Demand 11.0 through 11.0.14 allows remote... Moderate Unreviewed

CVE-2015-5002 was published May 17, 2022

IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 IFIX002, and 7.6.0 before... Moderate Unreviewed

CVE-2015-7487 was published May 17, 2022

IBM InfoSphere Master Data Management - Collaborative Edition 9.1, 10.1, 11.0 before 11.0.0.0... Moderate Unreviewed

CVE-2015-4960 was published May 17, 2022

Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric... Moderate Unreviewed

CVE-2015-7918 was published May 17, 2022

Unrestricted file upload vulnerability in the Panel component in Bastian Allgeier Kirby before 2... Moderate Unreviewed

CVE-2015-7773 was published May 17, 2022

Huawei Document Security Management (DSM) with software before V100R002C05SPC661 does not clear... Moderate Unreviewed

CVE-2015-8303 was published May 17, 2022

Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco Cloud Portal places passwords... Moderate Unreviewed

CVE-2014-3298 was published May 17, 2022

CRLF injection vulnerability in the Apache Cordova File Transfer Plugin (cordova-plugin-file... Moderate Unreviewed

CVE-2015-5204 was published May 17, 2022

Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, as used on iOS before 8.3 and... Moderate Unreviewed

CVE-2015-1112 was published May 17, 2022

Stack consumption vulnerability in dartwebserver.dll 1.9 and earlier, as used in Dart PowerTCP... Moderate Unreviewed

CVE-2012-3819 was published May 17, 2022

Previous 1…394…400 Next

Previous 1 2 … 392 393 394 395 396 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,186 advisories