Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,567 advisories

Loading
libavcodec/mmvideo.c in FFmpeg before 2.4.2 does not consider all lines of HHV Intra blocks... High Unreviewed
CVE-2014-8543 was published May 17, 2022
Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 allows remote attackers to cause... High Unreviewed
CVE-2014-8546 was published May 17, 2022
libavcodec/utils.c in FFmpeg before 2.4.2 omits a certain codec ID during enforcement of... High Unreviewed
CVE-2014-8542 was published May 14, 2022
libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying... High Unreviewed
CVE-2014-8545 was published May 17, 2022
SAP Document Management Services allows local users to execute arbitrary commands via unspecified... High Unreviewed
CVE-2014-8660 was published May 14, 2022
libavcodec/mjpegdec.c in FFmpeg before 2.4.2 considers only dimension differences, and not bits... High Unreviewed
CVE-2014-8541 was published May 17, 2022
The SAP CRM Internet Sales module allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2014-8661 was published May 17, 2022
libavcodec/gifdec.c in FFmpeg before 2.4.2 does not properly compute image heights, which allows... High Unreviewed
CVE-2014-8547 was published May 17, 2022
SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP... High Unreviewed
CVE-2014-8587 was published May 17, 2022
Heap-based buffer overflow in the encode_slice function in libavcodec/proresenc_kostya.c in... High Unreviewed
CVE-2014-5271 was published May 17, 2022
SQL injection vulnerability in metadata.xsjs in SAP HANA 1.00.60.379371 allows remote attackers... High Unreviewed
CVE-2014-8588 was published May 14, 2022
Akeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3... High Unreviewed
CVE-2014-7228 was published May 17, 2022
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to... High Unreviewed
CVE-2014-3634 was published May 17, 2022
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote... High Unreviewed
CVE-2014-9220 was published May 14, 2022
The lazy_bdecode function in BitTorrent bootstrap-dht (aka Bootstrap) allows remote attackers to... High Unreviewed
CVE-2014-8509 was published May 17, 2022
The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain... High Unreviewed
CVE-2014-8425 was published May 17, 2022
ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers... High Unreviewed
CVE-2014-8424 was published May 17, 2022
Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote... High Unreviewed
CVE-2014-8423 was published May 17, 2022
Enalean Tuleap before 7.5.99.6 allows remote attackers to execute arbitrary commands via the User... High Unreviewed
CVE-2014-7178 was published May 17, 2022
Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP before 5... High Unreviewed
CVE-2014-3669 was published May 17, 2022
The ViewPoint web application in Dell SonicWALL Global Management System (GMS) before 7.2 SP2,... High Unreviewed
CVE-2014-8420 was published May 14, 2022
The Calendar Base (cal) extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote... High Unreviewed
CVE-2014-8325 was published May 17, 2022
Stack-based buffer overflow in the date_from_ISO8601 function in ext/xmlrpc/libxmlrpc/xmlrpc.c in... High Unreviewed
CVE-2014-8626 was published May 17, 2022
Multiple unspecified vulnerabilities in Google Chrome before 39.0.2171.65 allow attackers to... High Unreviewed
CVE-2014-7910 was published May 17, 2022
Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103_WW_1... High Unreviewed
CVE-2014-1635 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database