Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,583 advisories

Loading
Fortinet FortiAuthenticator 3.0.0 has a password of (1) slony for the slony PostgreSQL user and ... High Unreviewed
CVE-2015-1455 was published May 17, 2022
SQL injection vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3... High Unreviewed
CVE-2015-1405 was published May 17, 2022
Directory traversal vulnerability in Webshop hun 1.062S allows remote attackers to have... High Unreviewed
CVE-2015-2243 was published May 17, 2022
Multiple SQL injection vulnerabilities in Webshop hun 1.062S allow remote attackers to execute... High Unreviewed
CVE-2015-2242 was published May 17, 2022
The Control and Provisioning of Wireless Access Points (CAPWAP) daemon in Fortinet FortiOS 5.0... High Unreviewed
CVE-2015-1452 was published May 17, 2022
I-O DATA DEVICE NP-BBRM routers allow remote attackers to cause a denial of service (SSDP... High Unreviewed
CVE-2015-0869 was published May 17, 2022
Heap-based buffer overflow in the browser plugin for PTC Creo View allows remote attackers to... High Unreviewed
CVE-2015-2061 was published May 17, 2022
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x... High Unreviewed
CVE-2015-0235 was published May 13, 2022
The Dealer Portal in SAP ERP does not properly restrict access, which allows remote attackers to... High Unreviewed
CVE-2015-1312 was published May 14, 2022
SQL injection vulnerability in SAP Adaptive Server Enterprise (Sybase ASE) allows remote... High Unreviewed
CVE-2015-1310 was published May 14, 2022
The Extended Application Services (XS) in SAP HANA allows remote attackers to inject arbitrary... High Unreviewed
CVE-2015-1311 was published May 14, 2022
Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in... High Unreviewed
CVE-2014-7933 was published May 17, 2022
Multiple off-by-one errors in libavcodec/vorbisdec.c in FFmpeg before 2.4.2, as used in Google... High Unreviewed
CVE-2014-7937 was published May 17, 2022
scripts/amsvis/powerpcAMS/amsnet.py in powerpc-utils-python uses the pickle Python module... High Unreviewed
CVE-2014-8165 was published May 14, 2022
libavcodec/xface.h in FFmpeg before 2.5.2 establishes certain digits and words array dimensions... High Unreviewed
CVE-2014-9602 was published May 17, 2022
libavcodec/utvideodec.c in FFmpeg before 2.5.2 does not check for a zero value of a slice height,... High Unreviewed
CVE-2014-9604 was published May 17, 2022
The vmd_decode function in libavcodec/vmdvideo.c in FFmpeg before 2.5.2 does not validate the... High Unreviewed
CVE-2014-9603 was published May 17, 2022
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a... High Unreviewed
CVE-2015-0040 was published May 14, 2022
SQL injection vulnerability in redir_last_post_list.php in SoftBB 0.1.3 allows remote attackers... High Unreviewed
CVE-2014-9560 was published May 17, 2022
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in... High Unreviewed
CVE-2015-0002 was published May 14, 2022
SQL injection vulnerability in question.php in the mTouch Quiz before 3.0.7 for WordPress allows... High Unreviewed
CVE-2014-100022 was published May 17, 2022
SQL injection vulnerability in profile.php in FluxBB before 1.4.13 and 1.5.x before 1.5.7 allows... High Unreviewed
CVE-2014-10029 was published May 17, 2022
The rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote... High Unreviewed
CVE-2014-0603 was published May 17, 2022
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP... High Unreviewed
CVE-2014-0604 was published May 17, 2022
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP... High Unreviewed
CVE-2014-0605 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database