Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,584 advisories

Loading
The Cisco Unified SIP Phone 3905 with firmware before 9.4(1) allows remote attackers to obtain... High Unreviewed
CVE-2014-0721 was published May 17, 2022
Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute... High Unreviewed
CVE-2013-2226 was published May 17, 2022
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow... High Unreviewed
CVE-2014-0526 was published May 17, 2022
MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize... High Unreviewed
CVE-2013-6453 was published May 17, 2022
Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before... High Unreviewed
CVE-2014-2731 was published May 17, 2022
An unspecified RFC function in SAP CCMS Agent allows remote attackers to execute arbitrary... High Unreviewed
CVE-2013-7362 was published May 17, 2022
The Modbus slave/outstation driver in the OPC Drivers 1.0.20 and earlier in IOServer OPC Server... High Unreviewed
CVE-2014-0777 was published May 17, 2022
Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server... High Unreviewed
CVE-2014-2544 was published May 17, 2022
EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote attackers to read arbitrary files... High Unreviewed
CVE-2014-0644 was published May 17, 2022
Directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x... High Unreviewed
CVE-2011-3315 was published May 17, 2022
The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.48... High Unreviewed
CVE-2014-2129 was published May 17, 2022
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows remote... High Unreviewed
CVE-2013-2809 was published May 17, 2022
SAP Enterprise Portal does not properly restrict access to the Federation configuration pages,... High Unreviewed
CVE-2013-7367 was published May 17, 2022
lib/Auth/Source/External.php in the drupalauth module before 1.2.2 for simpleSAMLphp allows... High Unreviewed
CVE-2013-4552 was published May 17, 2022
Apache Cordova 3.3.0 and earlier and Adobe PhoneGap 2.9.0 and earlier allow remote attackers to... High Unreviewed
CVE-2014-1882 was published May 17, 2022
kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for... High Unreviewed
CVE-2011-4192 was published May 17, 2022
Apple Type Services (ATS) in Apple OS X before 10.9.2 does not properly validate calls to the... High Unreviewed
CVE-2014-1255 was published May 17, 2022
Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), 8.3 before 8.3(2.40), 8.4... High Unreviewed
CVE-2014-2127 was published May 17, 2022
Multiple SQL injection vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to... High Unreviewed
CVE-2013-1803 was published May 17, 2022
Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service,... High Unreviewed
CVE-2013-2278 was published May 17, 2022
PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to execute... High Unreviewed
CVE-2014-2874 was published May 17, 2022
Stack-based buffer overflow in AloahaPDFViewer 5.0.0.7 and earlier in Aloaha PDF Suite FREE... High Unreviewed
CVE-2013-4978 was published May 17, 2022
Unspecified vulnerability in Norman Security Suite 10.1 and earlier allows local users to gain... High Unreviewed
CVE-2014-0816 was published May 17, 2022
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session... High Unreviewed
CVE-2014-0633 was published May 17, 2022
Multiple directory traversal vulnerabilities in PaperThin CommonSpot before 7.0.2 and 8.x before... High Unreviewed
CVE-2014-2864 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database