Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
The SAML2 implementation in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2... High Unreviewed
CVE-2016-5752 was published May 17, 2022
MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 do... High Unreviewed
CVE-2015-8625 was published May 17, 2022
An exploitable memory corruption vulnerability exists in the handling of the MXIT protocol in... High Unreviewed
CVE-2016-2374 was published May 17, 2022
Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal... High Unreviewed
CVE-2014-9692 was published May 17, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... High Unreviewed
CVE-2016-10314 was published May 17, 2022
Apache Geode information disclosure vulnerability High
CVE-2017-5649 was published for org.apache.geode:geode-core (Maven) May 17, 2022
iBaby M6 allows remote attackers to obtain sensitive information, related to the ibabycloud.com... High Unreviewed
CVE-2015-2886 was published May 17, 2022
CloudView NMS before 2.10a allows remote attackers to obtain sensitive information via a direct... High Unreviewed
CVE-2016-5076 was published May 17, 2022
Vision Critical before 2014-05-30 allows attackers to read arbitrary files via unspecified... High Unreviewed
CVE-2014-2960 was published May 17, 2022
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 stores a PSK in cleartext under /private/var... High Unreviewed
CVE-2016-5051 was published May 17, 2022
In KeePassX before 0.4.4, a cleartext copy of password data is created upon a cancel of an XML... High Unreviewed
CVE-2015-8378 was published May 17, 2022
botan 1.11.x before 1.11.22 makes it easier for remote attackers to decrypt TLS ciphertext data... High Unreviewed
CVE-2015-7824 was published May 17, 2022
Philips In.Sight B120/37 allows remote attackers to obtain sensitive information via a direct... High Unreviewed
CVE-2015-2884 was published May 17, 2022
An exploitable information disclosure vulnerability exists in the Web Application functionality... High Unreviewed
CVE-2016-8727 was published May 17, 2022
MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when ... High Unreviewed
CVE-2016-6332 was published May 17, 2022
MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head... High Unreviewed
CVE-2016-6335 was published May 17, 2022
An issue was discovered in Unitrends Enterprise Backup before 9.1.1. The function downloadFile in... High Unreviewed
CVE-2017-7282 was published May 17, 2022
Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain... High Unreviewed
CVE-2017-7978 was published May 17, 2022
SONY SNC-CH115, SNC-CH120, SNC-CH160, SNC-CH220, SNC-CH260, SNC-DH120, SNC-DH120T, SNC-DH160, SNC... High Unreviewed
CVE-2016-7834 was published May 17, 2022
ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the... High Unreviewed
CVE-2016-1561 was published May 17, 2022
An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to... High Unreviewed
CVE-2017-2334 was published May 17, 2022
D-Link DAP-1353 H/W vers. B1 3.15 and earlier, D-Link DAP-2553 H/W ver. A1 1.31 and earlier, and... High Unreviewed
CVE-2016-1559 was published May 17, 2022
Information disclosure in Netgear WN604 before 3.3.3; WNAP210, WNAP320, WNDAP350, and WNDAP360... High Unreviewed
CVE-2016-1556 was published May 17, 2022
SaltStack Salt Information Exposure High
CVE-2017-8109 was published for salt (pip) May 17, 2022
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow JSONP Information... High Unreviewed
CVE-2017-5892 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database