Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,641
Maven
5,000+
npm
4,266
NuGet
760
pip
4,062
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to... Critical Unreviewed
CVE-2017-11357 was published May 14, 2022
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7... High Unreviewed
CVE-2017-0145 was published May 14, 2022
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office... High Unreviewed
CVE-2016-7262 was published May 14, 2022
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7... High Unreviewed
CVE-2017-0144 was published May 14, 2022
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7... High Unreviewed
CVE-2017-0143 was published May 14, 2022
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP... Moderate Unreviewed
CVE-2016-8562 was published May 13, 2022
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service,... High Unreviewed
CVE-2021-36741 was published May 24, 2022
A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service,... High Unreviewed
CVE-2021-36742 was published May 24, 2022
Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which... High Unreviewed
CVE-2016-0034 was published May 14, 2022
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2014-8361 was published May 13, 2022
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input... Critical Unreviewed
CVE-2021-21985 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab... Critical Unreviewed
CVE-2021-22205 was published May 24, 2022
A memory corruption issue was addressed with improved input validation. This issue is fixed in... High Unreviewed
CVE-2020-27930 was published May 24, 2022
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software... Moderate Unreviewed
CVE-2020-3452 was published May 24, 2022
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail... High Unreviewed
CVE-2020-1350 was published May 24, 2022
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote... High Unreviewed
CVE-2020-3161 was published May 24, 2022
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type... Moderate Unreviewed
CVE-2020-1020 was published May 24, 2022
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type... Moderate Unreviewed
CVE-2020-0938 was published May 24, 2022
An issue was discovered in NoneCms V1.3. thinkphp/library/think/App.php allows remote attackers... Critical Unreviewed
CVE-2018-20062 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325... High Unreviewed
CVE-2019-1652 was published May 13, 2022
Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x... Critical Unreviewed
CVE-2017-15944 was published May 13, 2022
A vulnerability in the web interface of the Cisco RV132W ADSL2+ Wireless-N VPN and RV134W VDSL2... Critical Unreviewed
CVE-2018-0125 was published May 13, 2022
A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN... High Unreviewed
CVE-2017-12235 was published May 13, 2022
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in... High Unreviewed
CVE-2017-12233 was published May 13, 2022
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in... High Unreviewed
CVE-2017-12234 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database