GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,182
Composer 5,099
Erlang 40
GitHub Actions 38
Go 2,781
Maven 6,180
npm 4,386
NuGet 772
pip 4,164
Pub 12
RubyGems 965
Rust 1,073
Swift 45

Unreviewed advisories

All unreviewed 283,494

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

308,676 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite ... Moderate Unreviewed

CVE-2017-10093 was published May 17, 2022

The writeRandomBytes_RtlGenRandom function in xmlparse.c in libexpat in Expat 2.2.1 and 2.2.2 on... High Unreviewed

CVE-2017-11742 was published May 17, 2022

A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an... High Unreviewed

CVE-2017-6746 was published May 17, 2022

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer helper... Moderate Unreviewed

CVE-2017-6260 was published May 17, 2022

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t <... Moderate Unreviewed

CVE-2021-3933 was published Mar 26, 2022

Cross-site scripting (XSS) vulnerability in NashTech Easy PHP Calendar 6.3.25 allows remote... Moderate Unreviewed

CVE-2008-7018 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in Vivvo CMS before 4.0.4 allows remote attackers... Moderate Unreviewed

CVE-2008-6801 was published May 17, 2022

Reporter.exe in Acunetix 8 allows remote attackers to execute arbitrary code or cause a denial of... Critical Unreviewed

CVE-2017-11673 was published May 17, 2022

NetApp Clustered Data ONTAP before 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow attackers to... Moderate Unreviewed

CVE-2017-7947 was published May 17, 2022

If, after successful installation of MantisBT through 2.5.2 on MySQL/MariaDB, the administrator... Moderate Unreviewed

CVE-2017-12419 was published May 17, 2022

NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an... High Unreviewed

CVE-2017-6259 was published May 17, 2022

StorageCrypt 2.0.1 does not properly encrypt disks, which allows local users to obtain sensitive... Moderate Unreviewed

CVE-2008-6073 was published May 17, 2022

EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS... Moderate Unreviewed

CVE-2016-0907 was published May 17, 2022

A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can... High Unreviewed

CVE-2021-20302 was published Mar 5, 2022

Server-Side Request Forgery in kityminder Critical

CVE-2022-31830 was published for kityminder (npm) Jun 10, 2022

Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist... High Unreviewed

CVE-2022-29094 was published Jun 11, 2022

A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a... High Unreviewed

CVE-2021-20019 was published May 24, 2022

Potential speculative code store bypass in all supported CPU products, in conjunction with... Moderate Unreviewed

CVE-2021-26313 was published May 24, 2022

A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This... High Unreviewed

CVE-2020-7870 was published May 24, 2022

connection.php in FlashChat 5.0.8 allows remote attackers to bypass the role filter mechanism and... High Unreviewed

CVE-2008-6799 was published May 17, 2022

SQL injection vulnerability in the Sarkilar module for PHP-Nuke allows remote attackers to... High Unreviewed

CVE-2008-6779 was published May 17, 2022

SQL injection vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc... Moderate Unreviewed

CVE-2008-5954 was published May 17, 2022

Nukeviet 2.0 Beta allows remote attackers to bypass authentication and gain administrative access... High Unreviewed

CVE-2008-5945 was published May 17, 2022

Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security... High Unreviewed

CVE-2008-5414 was published May 17, 2022

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1... High Unreviewed

CVE-2008-6711 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

308,676 advisories