Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,570 advisories

Loading
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote... High Unreviewed
CVE-2014-7186 was published May 14, 2022
The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS... High Unreviewed
CVE-2014-7145 was published May 17, 2022
Buffer overflow in net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, allows... High Unreviewed
CVE-2014-6416 was published May 17, 2022
Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026... High Unreviewed
CVE-2014-7187 was published May 14, 2022
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly validate... High Unreviewed
CVE-2014-6418 was published May 17, 2022
The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly... High Unreviewed
CVE-2014-6446 was published May 17, 2022
SQL injection vulnerability in the Guest Login Portal in the Sophos Cyberoam appliances with... High Unreviewed
CVE-2014-5503 was published May 17, 2022
The Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote authenticated users... High Unreviewed
CVE-2014-5502 was published May 17, 2022
Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with... High Unreviewed
CVE-2014-5501 was published May 17, 2022
The IOHIDSecurePromptClient function in Apple OS X does not properly validate pointer values,... High Unreviewed
CVE-2014-7861 was published May 17, 2022
SQL injection vulnerability in log.header.php in WordPress 0.7 and earlier allows remote... High Unreviewed
CVE-2003-1598 was published Apr 29, 2022
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of... High Unreviewed
CVE-2014-6278 was published May 13, 2022
The Cron service in rpc.php in OpenMediaVault allows remote authenticated users to execute cron... High Unreviewed
CVE-2013-3632 was published May 17, 2022
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly consider... High Unreviewed
CVE-2014-6417 was published May 17, 2022
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0... High Unreviewed
CVE-2014-0556 was published May 17, 2022
SolarWinds Log and Event Manager before 6.0 uses "static" credentials, which makes it easier for... High Unreviewed
CVE-2014-5504 was published May 17, 2022
vmtadmin.cgi in VMTurbo Operations Manager before 4.6 build 28657 allows remote attackers to... High Unreviewed
CVE-2014-5073 was published May 17, 2022
FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote... High Unreviewed
CVE-2014-0600 was published May 17, 2022
Heap-based buffer overflow in the PavTPK.sys kernel mode driver of Panda Security 2014 products... High Unreviewed
CVE-2014-5307 was published May 14, 2022
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly... High Unreviewed
CVE-2014-3524 was published May 13, 2022
Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x... High Unreviewed
CVE-2014-3525 was published May 17, 2022
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute... High Unreviewed
CVE-2014-5210 was published May 17, 2022
systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20... High Unreviewed
CVE-2014-3085 was published May 17, 2022
The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain... High Unreviewed
CVE-2014-5206 was published May 13, 2022
wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before... High Unreviewed
CVE-2014-5203 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database