Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,563 advisories

Loading
The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 allows... Moderate Unreviewed
CVE-2012-4556 was published May 17, 2022
Cisco NX-OS on the Nexus 7000, when a certain Overlay Transport Virtualization (OTV)... Moderate Unreviewed
CVE-2013-1122 was published May 17, 2022
Open redirect vulnerability in assets/login on the Forescout CounterACT NAC device before 7.0... Moderate Unreviewed
CVE-2012-4982 was published May 17, 2022
Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and... Moderate Unreviewed
CVE-2012-6499 was published May 17, 2022
IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to... High Unreviewed
CVE-2013-0714 was published May 17, 2022
The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to... Moderate Unreviewed
CVE-2013-0715 was published May 17, 2022
Array index error in the SSL module in PolarSSL before 1.2.5 might allow remote attackers to... Moderate Unreviewed
CVE-2013-1621 was published May 17, 2022
The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP... Moderate Unreviewed
CVE-2012-5445 was published May 17, 2022
The Huawei E585 device does not validate the status of admin sessions, which allows remote... Moderate Unreviewed
CVE-2012-5968 was published May 17, 2022
The management console in Symantec Endpoint Protection (SEP) 11.0 before RU7-MP3 and 12.1 before... High Unreviewed
CVE-2012-4348 was published May 17, 2022
Open redirect vulnerability in the help page in Cisco Video Surveillance Operations Manager... Moderate Unreviewed
CVE-2013-3376 was published May 17, 2022
XSS Auditor in WebKit in Apple Safari before 6.0.5 does not properly rewrite URLs, which allows... Moderate Unreviewed
CVE-2013-1013 was published May 17, 2022
Webmin 1.590 and earlier allows remote authenticated users to execute arbitrary Perl code via a... Moderate Unreviewed
CVE-2012-2981 was published May 17, 2022
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate... Moderate Unreviewed
CVE-2012-6395 was published May 17, 2022
CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers to inject arbitrary... Moderate Unreviewed
CVE-2012-4023 was published May 17, 2022
The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in certain Acer, Apple, Asus, Ford, HTC,... High Unreviewed
CVE-2012-2619 was published May 17, 2022
HP Insight Diagnostics 9.4.0.4710 allows remote attackers to conduct unspecified injection... High Unreviewed
CVE-2013-3573 was published May 17, 2022
Buffer overflow in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and... High Unreviewed
CVE-2012-1817 was published May 17, 2022
The DNP3 driver in IOServer drivers 1.0.19.0 allows remote attackers to cause a denial of service... High Unreviewed
CVE-2013-2783 was published May 17, 2022
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to... Moderate Unreviewed
CVE-2013-1162 was published May 17, 2022
The HMI web application in Siemens WinCC (TIA Portal) 11 allows remote authenticated users to... Moderate Unreviewed
CVE-2013-0669 was published May 17, 2022
EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote... Moderate Unreviewed
CVE-2012-2294 was published May 17, 2022
The Huawei Access Router (AR) before V200R002SPC003 allows remote attackers to cause a denial of... High Unreviewed
CVE-2013-4632 was published May 17, 2022
The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16... Moderate Unreviewed
CVE-2013-4636 was published May 17, 2022
Cisco TelePresence TC Software before 6.1 and TE Software before 4.1.3 allow remote attackers to... High Unreviewed
CVE-2013-3378 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database