Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,868 advisories

Loading
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20179 was published May 14, 2022
An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively.... Critical Unreviewed
CVE-2019-9117 was published May 14, 2022
Subrion CMS 4.0.5.10 has SQL injection in admin/database/ via the query parameter. Critical Unreviewed
CVE-2017-6013 was published May 14, 2022
FlarumChina v0.1.0-beta.7C has SQL injection via a /?q= request. Critical Unreviewed
CVE-2019-9566 was published May 14, 2022
FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7863 was published May 14, 2022
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing... Critical Unreviewed
CVE-2018-5338 was published May 14, 2022
There is an invalid free in Mapping::DoubleHash::clear in mapping.cpp that leads to a... Critical Unreviewed
CVE-2018-7552 was published May 14, 2022
Mozilla developers backported selected changes in the Skia library. These changes correct memory... Critical Unreviewed
CVE-2018-5183 was published May 14, 2022
An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively.... Critical Unreviewed
CVE-2019-9119 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Critical Unreviewed
CVE-2017-7129 was published May 14, 2022
A Remote Code Execution vulnerability in HPE intelligent Management Center (iMC) PLAT version IMC... Critical Unreviewed
CVE-2017-12557 was published May 14, 2022
Server-Side Request Forgery (SSRF) vulnerability in Hitachi Infrastructure Analytics Advisor on... Critical Unreviewed
CVE-2022-41552 was published Nov 1, 2022
Centreon vulnerable to SQL Injection Critical
CVE-2022-3827 was published for centreon/centreon (Composer) Nov 2, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is... Critical Unreviewed
CVE-2017-7110 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is... Critical Unreviewed
CVE-2017-7112 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is... Critical Unreviewed
CVE-2017-7105 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Critical Unreviewed
CVE-2017-7128 was published May 14, 2022
An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F... Critical Unreviewed
CVE-2018-7573 was published May 14, 2022
Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML External Entity (XXE)... Critical Unreviewed
CVE-2019-5918 was published May 14, 2022
A SQL Injection vulnerability exists in Western Bridge Cobub Razor 0.8.0 via the channel_name or... Critical Unreviewed
CVE-2018-8057 was published May 14, 2022
Ignite Realtime Openfire vulnerable to Server Side Request Forgery Critical
CVE-2019-18394 was published for org.igniterealtime.openfire:parent (Maven) May 24, 2022
Feng Office 3.7.0.5 allows remote attackers to execute arbitrary code via "<!--#exec cmd=" in a ... Critical Unreviewed
CVE-2019-9623 was published May 14, 2022
There is an invalid free in MiniPS::delete0 in minips.cpp that leads to a Segmentation fault in... Critical Unreviewed
CVE-2018-7551 was published May 14, 2022
An issue was discovered in SDCMS V1.7. In the \app\admin\controller\themecontroller.php file, the... Critical Unreviewed
CVE-2019-9651 was published May 14, 2022
SQL injection vulnerability in TestLink before 1.9.14 allows remote attackers to execute... Critical Unreviewed
CVE-2015-7390 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database