Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,390 advisories

Loading
Cross-site scripting (XSS) vulnerability in login.php in EsPartenaires 1.0 allows remote... Moderate Unreviewed
CVE-2008-6876 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in NashTech Easy PHP Calendar 6.3.25 allows remote... Moderate Unreviewed
CVE-2008-7018 was published May 17, 2022
Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, does not use timeouts... High Unreviewed
CVE-2008-6910 was published May 17, 2022
Avira AntiVir Premium, Premium Security Suite, AntiVir Professional, and AntiVir Personal - FREE... High Unreviewed
CVE-2008-6962 was published May 17, 2022
Multiple unspecified vulnerabilities in Sophos SAVScan 4.33.0 for Linux, and possibly other... High Unreviewed
CVE-2008-6904 was published May 17, 2022
SQL injection vulnerability in detailad.asp in Pre Classified Listings 1.0 allows remote... High Unreviewed
CVE-2008-6887 was published May 17, 2022
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite ... Moderate Unreviewed
CVE-2017-10093 was published May 17, 2022
hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-6585 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Vivvo CMS before 4.0.4 allows remote attackers... Moderate Unreviewed
CVE-2008-6801 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in search.php in Zoph 0.7.2.1 allows remote attackers to... Moderate Unreviewed
CVE-2008-6838 was published May 17, 2022
In EMC RSA Authentication Manager 8.2 SP1 and earlier, a malicious RSA Security Console... Moderate Unreviewed
CVE-2017-8000 was published May 17, 2022
If, after successful installation of MantisBT through 2.5.2 on MySQL/MariaDB, the administrator... Moderate Unreviewed
CVE-2017-12419 was published May 17, 2022
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an... High Unreviewed
CVE-2017-6259 was published May 17, 2022
Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c. High Unreviewed
CVE-2017-12067 was published May 17, 2022
EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS... Moderate Unreviewed
CVE-2016-0907 was published May 17, 2022
Reporter.exe in Acunetix 8 allows remote attackers to execute arbitrary code or cause a denial of... Critical Unreviewed
CVE-2017-11673 was published May 17, 2022
There is URL Redirector Abuse in MetInfo through 5.3.17 via the gourl parameter to member/login.php. Moderate Unreviewed
CVE-2017-11718 was published May 17, 2022
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an... High Unreviewed
CVE-2017-6746 was published May 17, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer helper... Moderate Unreviewed
CVE-2017-6260 was published May 17, 2022
NetApp Clustered Data ONTAP before 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow attackers to... Moderate Unreviewed
CVE-2017-7947 was published May 17, 2022
Buffer overflow in drivers/soc/qcom/subsystem_restart.c in the Qualcomm subsystem driver in... High Unreviewed
CVE-2016-3858 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in login.php in 3CX Phone System Free Edition... Moderate Unreviewed
CVE-2008-6894 was published May 17, 2022
Due to an insecure design, the Lepin EP-KP001 flash drive through KP001_V19 is vulnerable to an... Moderate Unreviewed
CVE-2022-29948 was published Jun 11, 2022
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as... High Unreviewed
CVE-2022-2017 was published Jun 10, 2022
Emlog Pro v 1.0.4 cross-site scripting (XSS) in Emlog Pro background management. Moderate Unreviewed
CVE-2021-40610 was published Jun 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database