Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

391 advisories

Loading
cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple... Low Unreviewed
CVE-2017-18392 was published May 24, 2022
cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation... Low Unreviewed
CVE-2018-20897 was published May 24, 2022
cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442). Low Unreviewed
CVE-2018-20893 was published May 24, 2022
cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409). Low Unreviewed
CVE-2018-20873 was published May 24, 2022
An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the... Low Unreviewed
CVE-2018-10947 was published May 24, 2022
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65... Low Unreviewed
CVE-2019-0094 was published May 24, 2022
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique... Low Unreviewed
CVE-2014-8178 was published May 17, 2022
The DRDA Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to... Low Unreviewed
CVE-2010-3732 was published May 17, 2022
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to... Low Unreviewed
CVE-2008-4640 was published May 17, 2022
JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2... Low Unreviewed
CVE-2010-2474 was published May 17, 2022
** DISPUTED ** The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows... Low Unreviewed
CVE-2008-7258 was published May 17, 2022
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of... Low Unreviewed
CVE-2010-4548 was published May 17, 2022
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run... Low Unreviewed
CVE-2010-3862 was published May 17, 2022
IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino does not properly handle URLs that... Low Unreviewed
CVE-2008-7286 was published May 17, 2022
Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS... Low Unreviewed
CVE-2011-1068 was published May 17, 2022
acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has... Low Unreviewed
CVE-2011-1159 was published May 17, 2022
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x... Low Unreviewed
CVE-2011-4415 was published May 17, 2022
The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool ... Low Unreviewed
CVE-2011-2503 was published May 17, 2022
OpenStack Nova Scheduler denial of service through scheduler_hints Low
CVE-2012-3371 was published for Nova (pip) May 17, 2022
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7... Low Unreviewed
CVE-2010-4819 was published May 17, 2022
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel... Low Unreviewed
CVE-2012-2669 was published May 17, 2022
Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID... Low Unreviewed
CVE-2013-0963 was published May 17, 2022
The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6... Low Unreviewed
CVE-2013-1648 was published May 17, 2022
drivers/hid/hid-sensor-hub.c in the Human Interface Device (HID) subsystem in the Linux kernel... Low Unreviewed
CVE-2013-2898 was published May 17, 2022
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for... Low Unreviewed
CVE-2013-4354 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database