Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent:... High Unreviewed
CVE-2017-3250 was published May 17, 2022
An information disclosure vulnerability in the Core and Management Console in BlackBerry... High Unreviewed
CVE-2016-3130 was published May 17, 2022
MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow remote attackers... High Unreviewed
CVE-2016-9414 was published May 17, 2022
MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows... High Unreviewed
CVE-2016-9418 was published May 17, 2022
MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote... High Unreviewed
CVE-2016-9410 was published May 17, 2022
IBM Security Privileged Identity Manager could allow a remote attacker to obtain sensitive... High Unreviewed
CVE-2016-5958 was published May 17, 2022
IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to... High Unreviewed
CVE-2016-6068 was published May 17, 2022
An issue was discovered in OmniMetrix OmniView, Version 1.2. The OmniView web application... High Unreviewed
CVE-2016-5786 was published May 17, 2022
An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV... High Unreviewed
CVE-2017-5146 was published May 17, 2022
Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1... High Unreviewed
CVE-2016-10003 was published May 17, 2022
NetApp Clustered Data ONTAP before 8.3.2P7 allows remote attackers to obtain SMB share... High Unreviewed
CVE-2016-4341 was published May 17, 2022
Page table walks conducted by the MMU during virtual to physical address translation leave a... High Unreviewed
CVE-2017-5926 was published May 17, 2022
Page table walks conducted by the MMU during virtual to physical address translation leave a... High Unreviewed
CVE-2017-5925 was published May 17, 2022
Page table walks conducted by the MMU during virtual to physical address translation leave a... High Unreviewed
CVE-2017-5927 was published May 17, 2022
The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec:... High Unreviewed
CVE-2016-3995 was published May 17, 2022
Cloudera Manager 5.5 and earlier allows remote attackers to enumerate user sessions via a request... High Unreviewed
CVE-2016-4950 was published May 17, 2022
Cloudera Manager 5.5 and earlier allows remote attackers to obtain sensitive information via a (1... High Unreviewed
CVE-2016-4949 was published May 17, 2022
An information disclosure vulnerability in the logging implementation of BlackBerry Good Control... High Unreviewed
CVE-2016-3127 was published May 17, 2022
A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a... High Unreviewed
CVE-2016-10143 was published May 17, 2022
IBM Tivoli Storage Manager (IBM Spectrum Protect) 6.1, 6.2, 6.3, and 7.1 does not perform... High Unreviewed
CVE-2016-8940 was published May 17, 2022
Information disclosure and authentication bypass vulnerability exists in the Apache HTTP Server... High Unreviewed
CVE-2016-10140 was published May 17, 2022
Information disclosure issue in qdPM 8.3 allows remote attackers to obtain sensitive information... High Unreviewed
CVE-2015-3881 was published May 17, 2022
Wonder CMS 2014 allows remote attackers to obtain sensitive information by viewing /files... High Unreviewed
CVE-2014-8701 was published May 17, 2022
The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor)... High Unreviewed
CVE-2016-9165 was published May 17, 2022
Presence of a .htaccess file could leak information in NetIQ Access Manager 4.1 before 4.1.2 Hot... High Unreviewed
CVE-2016-5754 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database