GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,574

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,371 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi... High Unreviewed

CVE-2016-4398 was published May 14, 2022

A remote code execution vulnerability was identified in HP Business Service Management (BSM)... High Unreviewed

CVE-2016-4405 was published May 14, 2022

PHPMemcachedAdmin 1.2.2 and earlier allows remote attackers to execute arbitrary PHP code via... Critical Unreviewed

CVE-2014-8731 was published May 14, 2022

The EjbObjectInputStream class in Apache TomEE before 1.7.4 and 7.x before 7.0.0-M3 allows remote... Critical Unreviewed

CVE-2016-0779 was published May 14, 2022

JetBrains dotPeek before 2018.2 and ReSharper Ultimate before 2018.1.4 allow attackers to execute... High Unreviewed

CVE-2018-14878 was published May 14, 2022

gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data,... High Unreviewed

CVE-2018-7889 was published May 14, 2022

A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security... High Unreviewed

CVE-2018-10513 was published May 14, 2022

The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the... High Unreviewed

CVE-2018-15503 was published May 14, 2022

HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce... High Unreviewed

CVE-2018-15514 was published May 14, 2022

SAP NetWeaver 7400.12.21.30308 allows remote attackers to cause a denial of service and possibly... Critical Unreviewed

CVE-2017-9844 was published May 14, 2022

VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects with user supplied... High Unreviewed

CVE-2018-18987 was published May 14, 2022

** DISPUTED *** Xen Mobile through 10.8.0 includes a service listening on port 5001 within its... High Unreviewed

CVE-2018-18013 was published May 14, 2022

MegaMek version < v0.45.1 contains a Other/Unknown vulnerability in Object Stream Connection that... Critical Unreviewed

CVE-2018-1000824 was published May 14, 2022

Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter... Critical Unreviewed

CVE-2018-1000827 was published May 14, 2022

ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter... Critical Unreviewed

CVE-2018-1000833 was published May 14, 2022

SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code... Critical Unreviewed

CVE-2018-20732 was published May 14, 2022

There is a deserialization vulnerability in Chatopera cosin v3.10.0. An attacker can execute... Critical Unreviewed

CVE-2019-6503 was published May 14, 2022

The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows... Critical Unreviewed

CVE-2018-9843 was published May 14, 2022

In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could conduct PHP object injection... Critical Unreviewed

CVE-2018-20148 was published May 14, 2022

A Remote Code Execution vulnerability in HPE intelligent Management Center (iMC) PLAT version IMC... Critical Unreviewed

CVE-2017-12557 was published May 14, 2022

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to... High Unreviewed

CVE-2018-0824 was published May 14, 2022

Secure/SAService.rem in Deltek Ajera Timesheets 9.10.16 and prior are vulnerable to remote code... High Unreviewed

CVE-2018-20221 was published May 14, 2022

The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0... High Unreviewed

CVE-2015-4852 was published May 14, 2022

The Management Console in GitHub Enterprise 2.8.x before 2.8.7 has a deserialization issue that... Critical Unreviewed

CVE-2017-18365 was published May 14, 2022

An attacker may convince a victim to open a malicious action micro (.actm) file that has... High Unreviewed

CVE-2019-7361 was published May 14, 2022

Previous 1…50…55 Next

Previous 1 2 … 48 49 50 51 52 53 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,371 advisories