GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,189

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

111,587 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and earlier... High Unreviewed

CVE-2015-1875 was published May 17, 2022

The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2... High Unreviewed

CVE-2015-2285 was published May 17, 2022

Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2... High Unreviewed

CVE-2015-0097 was published May 14, 2022

Multiple buffer overflows in WebGate Embedded Standard Protocol (WESP) SDK allow remote attackers... High Unreviewed

CVE-2015-2097 was published May 17, 2022

The AnnotationX.AnnList.1 ActiveX control in Agilent Technologies Feature Extraction allows... High Unreviewed

CVE-2015-2092 was published May 17, 2022

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS... High Unreviewed

CVE-2015-2094 was published May 17, 2022

Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect... High Unreviewed

CVE-2015-2177 was published May 14, 2022

Unspecified vulnerability in the Ninja Forms plugin before 2.8.10 for WordPress has unknown... High Unreviewed

CVE-2014-9688 was published May 17, 2022

Notes System Diagnostic (NSD) in IBM Domino 8.5.x before 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3... High Unreviewed

CVE-2015-0179 was published May 13, 2022

SQL injection vulnerability in the ajax_survey function in settings.php in the WordPress Survey... High Unreviewed

CVE-2015-2090 was published May 17, 2022

SQL injection vulnerability in DLGuard 4.5 allows remote attackers to execute arbitrary SQL... High Unreviewed

CVE-2015-2066 was published May 17, 2022

SQL injection vulnerability in videogalleryrss.php in the Apptha WordPress Video Gallery (contus... High Unreviewed

CVE-2015-2065 was published May 17, 2022

Multiple SQL injection vulnerabilities in Dell ScriptLogic Asset Manager (aka Quest Workspace... High Unreviewed

CVE-2015-1605 was published May 17, 2022

Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5... High Unreviewed

CVE-2015-2301 was published May 13, 2022

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows... High Unreviewed

CVE-2015-2049 was published May 17, 2022

Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c in the... High Unreviewed

CVE-2015-1351 was published May 13, 2022

Multiple use-after-free vulnerabilities in ext/date/php_date.c in PHP before 5.4.38, 5.5.x before... High Unreviewed

CVE-2015-0273 was published May 14, 2022

readelf.c in file before 5.22, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x... High Unreviewed

CVE-2014-9653 was published May 14, 2022

Directory traversal vulnerability in the LibraryFileUploadServlet servlet in Lexmark Markvision... High Unreviewed

CVE-2014-9375 was published May 17, 2022

radexecd.exe in Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0, and 9.1 allows... High Unreviewed

CVE-2015-1497 was published May 17, 2022

Motorola Scanner SDK uses weak permissions for (1) CoreScanner.exe, (2) rsmdriverproviderservice... High Unreviewed

CVE-2015-1496 was published May 17, 2022

Persistent Systems Radia Client Automation does not properly restrict access to certain request,... High Unreviewed

CVE-2015-1498 was published May 17, 2022

The ActiveMQ Broker in Samsung Security Manager (SSM) before 1.31 allows remote attackers to... High Unreviewed

CVE-2015-1499 was published May 17, 2022

Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On (FSSO) before build... High Unreviewed

CVE-2015-2281 was published May 14, 2022

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2,... High Unreviewed

CVE-2015-0057 was published May 14, 2022

Previous 1…394…400 Next

Previous 1 2 … 392 393 394 395 396 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

111,587 advisories