Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,584 advisories

Loading
The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0... High Unreviewed
CVE-2012-5390 was published May 17, 2022
Cisco TelePresence TC Software 4.x and 5.x and TE Software 4.x and 6.0 do not properly restrict... High Unreviewed
CVE-2014-2173 was published May 17, 2022
Heap-based buffer overflow in Cisco TelePresence TC Software 4.x through 6.x before 6.0.1 and TE... High Unreviewed
CVE-2014-2171 was published May 17, 2022
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote... High Unreviewed
CVE-2014-2161 was published May 17, 2022
Cisco TelePresence TC Software 4.x and 5.x before 5.1.7 and 6.x before 6.0.1 and TE Software 4.x... High Unreviewed
CVE-2014-2170 was published May 17, 2022
Ruckus Wireless Zoneflex 2942 devices with firmware 9.6.0.0.267 allow remote attackers to bypass... High Unreviewed
CVE-2013-5030 was published May 17, 2022
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain... High Unreviewed
CVE-2014-2321 was published May 17, 2022
Buffer overflow in Power Software WinArchiver 3.2 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2013-5660 was published May 17, 2022
kiwi before 4.98.05, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for... High Unreviewed
CVE-2011-4195 was published May 17, 2022
SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to... High Unreviewed
CVE-2014-3934 was published May 17, 2022
Cisco NX-OS 5.0 before 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs... High Unreviewed
CVE-2014-2200 was published May 17, 2022
Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a... High Unreviewed
CVE-2014-2158 was published May 17, 2022
dpkg 1.15.9 on Debian squeeze introduces support for the "C-style encoded filenames" feature... High Unreviewed
CVE-2014-3127 was published May 17, 2022
Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a... High Unreviewed
CVE-2014-2156 was published May 17, 2022
Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, and 7.4 before 7.4.110.0 allow remote... High Unreviewed
CVE-2014-0707 was published May 17, 2022
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote... High Unreviewed
CVE-2014-2159 was published May 17, 2022
Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute... High Unreviewed
CVE-2014-1245 was published May 17, 2022
Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2014-0359 was published May 17, 2022
Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow... High Unreviewed
CVE-2014-0358 was published May 17, 2022
Juniper Junos 13.2 before 13.2R3 and 13.3 before 13.3R1, when PIM is enabled, allows remote... High Unreviewed
CVE-2014-0614 was published May 17, 2022
PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to bypass intended... High Unreviewed
CVE-2014-2865 was published May 17, 2022
Multiple absolute path traversal vulnerabilities in PaperThin CommonSpot before 7.0.2 and 8.x... High Unreviewed
CVE-2014-2863 was published May 17, 2022
Unrestricted file upload vulnerability in PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3... High Unreviewed
CVE-2014-2867 was published May 17, 2022
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP... High Unreviewed
CVE-2013-6765 was published May 17, 2022
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services,... High Unreviewed
CVE-2014-2350 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database