GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,577 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter... High Unreviewed

CVE-2019-16759 was published May 24, 2022

Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and... Critical Unreviewed

CVE-2019-11708 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to... Critical Unreviewed

CVE-2019-0604 was published May 13, 2022

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow... Critical Unreviewed

CVE-2022-47966 was published Jan 18, 2023

A remote code execution vulnerability exists when the Windows Shell does not properly validate... High Unreviewed

CVE-2018-8414 was published May 14, 2022

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0... Moderate Unreviewed

CVE-2022-2856 was published Sep 27, 2022

Insufficient data validation in Mojo in Google Chrome prior to 105.0.5195.102 allowed a remote... Critical Unreviewed

CVE-2022-3075 was published Sep 27, 2022

A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow... High Unreviewed

CVE-2018-0296 was published May 13, 2022

Improper validation of some components used by the rollback mechanism in Trend Micro Apex One and... High Unreviewed

CVE-2022-40139 was published Sep 20, 2022

A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in... High Unreviewed

CVE-2018-0159 was published May 13, 2022

A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco... High Unreviewed

CVE-2018-0172 was published May 13, 2022

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software... High Unreviewed

CVE-2018-0156 was published May 13, 2022

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software... Critical Unreviewed

CVE-2018-0171 was published May 13, 2022

A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco... High Unreviewed

CVE-2018-0174 was published May 13, 2022

A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to... Critical Unreviewed

CVE-2018-0147 was published May 13, 2022

A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores... High Unreviewed

CVE-2018-0173 was published May 13, 2022

A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network ... High Unreviewed

CVE-2017-12319 was published May 13, 2022

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS Software and... High Unreviewed

CVE-2018-0158 was published May 13, 2022

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a... Critical Unreviewed

CVE-2017-12240 was published May 13, 2022

Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program... High Unreviewed

CVE-2017-17562 was published May 14, 2022

Serv-U web login screen was allowing characters that were not sanitized by the authentication... Critical Unreviewed

CVE-2021-35247 was published Jan 11, 2022

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 95.0... Moderate Unreviewed

CVE-2021-38000 was published Nov 24, 2021

Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from... High Unreviewed

CVE-2021-42278 was published May 24, 2022

Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to... High Unreviewed

CVE-2017-8759 was published May 14, 2022

Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to... Critical Unreviewed

CVE-2017-11357 was published May 14, 2022

Previous 1…10…400 Next

Previous 1 2 … 8 9 10 11 12 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,577 advisories