Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior... High Unreviewed
CVE-2016-6650 was published May 17, 2022
An issue was discovered in certain Apple products. macOS Server before 5.3 is affected. The issue... High Unreviewed
CVE-2017-2382 was published May 17, 2022
EMC RSA Archer Security Operations Management with RSA Unified Collector Framework versions prior... High Unreviewed
CVE-2017-4977 was published May 17, 2022
Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not... High Unreviewed
CVE-2017-0377 was published May 17, 2022
An information disclosure vulnerability in the Qualcomm bootloader could help to enable a local... High Unreviewed
CVE-2017-0455 was published May 17, 2022
The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could... High Unreviewed
CVE-2017-1000381 was published May 17, 2022
Apache OpenMeetings displays Tomcat version and detailed error stack trace High
CVE-2017-7683 was published for org.apache.openmeetings:openmeetings-parent (Maven) May 17, 2022
Improper cache invalidation in Joomla! CMS 1.7.3 through 3.7.2 leads to disclosure of form contents. High Unreviewed
CVE-2017-9933 was published May 17, 2022
Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Local File... High Unreviewed
CVE-2017-1000029 was published May 17, 2022
Sensitive Information Disclosure in com.trend.iwss.gui.servlet.ConfigBackup in Trend Micro... High Unreviewed
CVE-2016-9314 was published May 17, 2022
An improper certificate validation vulnerability in Fortinet FortiManager 5.0.6 through 5.2.7 and... High Unreviewed
CVE-2016-8495 was published May 17, 2022
A vulnerability in the web interface of the Cisco Secure Access Control System (ACS) could allow... High Unreviewed
CVE-2017-3841 was published May 17, 2022
NetApp Snap Creator Framework before 4.3.1 discloses sensitive information which could be viewed... High Unreviewed
CVE-2016-7172 was published May 17, 2022
Exposure of Sensitive Information to an Unauthorized Actor in Apache Qpid Broker for Java High
CVE-2016-8741 was published for org.apache.qpid:qpid-broker (Maven) May 17, 2022
Foreman after 1.1 and before 1.9.0-RC1 does not redirect HTTP requests to HTTPS when the... High Unreviewed
CVE-2015-5152 was published May 17, 2022
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7... High Unreviewed
CVE-2016-5500 was published May 17, 2022
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7... High Unreviewed
CVE-2016-5495 was published May 17, 2022
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233... High Unreviewed
CVE-2016-0904 was published May 17, 2022
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows... High Unreviewed
CVE-2016-4711 was published May 17, 2022
IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, 8.5.x before 8... High Unreviewed
CVE-2016-5986 was published May 17, 2022
An issue was discovered in Tilde CMS 1.0.1. Arbitrary files can be read via a file=../ attack on... High Unreviewed
CVE-2017-11325 was published May 17, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a... High Unreviewed
CVE-2017-9486 was published May 17, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9484 was published May 17, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9478 was published May 17, 2022
txAWS AWSServiceEndpoint defaults to not verifying server certificates High
CVE-2017-1000007 was published for txaws (pip) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database