Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,992 advisories

Loading
The xmlrpc.cgi Webmin script in IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2... High Unreviewed
CVE-2015-2011 was published May 17, 2022
IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check... Low Unreviewed
CVE-2015-5011 was published May 17, 2022
SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on... High Unreviewed
CVE-2015-7839 was published May 17, 2022
Zenoss Core through 5 Beta 3 does not require a password for modifying the pager command string,... Moderate Unreviewed
CVE-2014-6260 was published May 17, 2022
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to... High Unreviewed
CVE-2015-0538 was published May 17, 2022
flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices... High Unreviewed
CVE-2016-2332 was published May 17, 2022
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell... Critical Unreviewed
CVE-2015-0857 was published May 17, 2022
Corega CG-WLBARGL devices allow remote authenticated users to execute arbitrary commands via... High Unreviewed
CVE-2016-4822 was published May 17, 2022
IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote... High Unreviewed
CVE-2015-4930 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0236 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0328 was published May 17, 2022
Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1)... Critical Unreviewed
CVE-2016-1388 was published May 17, 2022
Sharp NEC Displays (UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300... Critical Unreviewed
CVE-2021-20699 was published May 24, 2022
IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote authenticated users to... High Unreviewed
CVE-2016-2875 was published May 17, 2022
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and... High Unreviewed
CVE-2015-4974 was published May 17, 2022
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before... High Unreviewed
CVE-2016-0326 was published May 17, 2022
Sharp NEC Displays (UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300... Critical Unreviewed
CVE-2021-20698 was published May 24, 2022
Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with... Critical Unreviewed
CVE-2016-5640 was published May 17, 2022
ffmpeg-sdk vulnerable to OS Command Injection Critical
CVE-2020-28435 was published for ffmpeg-sdk (npm) Jul 26, 2022
xopen is vulnerable to OS Command Injection in Exported Function xopen(filepath) Critical
CVE-2020-28447 was published for xopen (npm) Jul 26, 2022
deferred-exec Command Injection vulnerability Critical
CVE-2020-28438 was published for deferred-exec (npm) Jul 26, 2022
The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0... High Unreviewed
CVE-2015-6547 was published May 17, 2022
Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x... Critical Unreviewed
CVE-2016-9835 was published May 17, 2022
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to... High Unreviewed
CVE-2015-1986 was published May 17, 2022
The portal in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 through FP5, and 6.3.0 before... High Unreviewed
CVE-2015-5003 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database