Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through... High Unreviewed
CVE-2016-1409 was published May 17, 2022
Cisco IP Phone 8800 devices with software 11.0(1) allow remote attackers to cause a denial of... High Unreviewed
CVE-2016-1479 was published May 17, 2022
Improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022... Moderate Unreviewed
CVE-2022-30719 was published Jun 8, 2022
Windows Hyper-V in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold,... High Unreviewed
CVE-2017-8664 was published May 17, 2022
Unspecified vulnerability in the product view functionality in VirtueMart 1.0.13a and earlier... Moderate Unreviewed
CVE-2008-7205 was published May 17, 2022
DotNetNuke 2.0 through 4.8.4 allows remote attackers to load .ascx files instead of skin files,... High Unreviewed
CVE-2008-7102 was published May 17, 2022
The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to... Moderate Unreviewed
CVE-2008-7112 was published May 17, 2022
Avira AntiVir Premium, Premium Security Suite, AntiVir Professional, and AntiVir Personal - FREE... High Unreviewed
CVE-2008-6962 was published May 17, 2022
Reporter.exe in Acunetix 8 allows remote attackers to execute arbitrary code or cause a denial of... Critical Unreviewed
CVE-2017-11673 was published May 17, 2022
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an... High Unreviewed
CVE-2017-6746 was published May 17, 2022
A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This... High Unreviewed
CVE-2020-7870 was published May 24, 2022
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication... High Unreviewed
CVE-2008-5709 was published May 17, 2022
** DISPUTED ** The set_language_path function in geshi.php in Generic Syntax Highlighter (GeSHi)... High Unreviewed
CVE-2008-5186 was published May 17, 2022
AVG Anti-Virus for Linux 7.5.51, and possibly earlier, allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2008-6662 was published May 17, 2022
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive... High Unreviewed
CVE-2021-40112 was published May 24, 2022
Open redirect vulnerability in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1... Moderate Unreviewed
CVE-2008-5117 was published May 17, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote... High Unreviewed
CVE-2021-1480 was published May 24, 2022
Possible out of bound access due to improper validation of function table entries in Snapdragon... High Unreviewed
CVE-2021-30259 was published May 24, 2022
Cisco IOS 15.5(3)S3, 15.6(1)S2, 15.6(2)S1, and 15.6(2)T1 does not properly dequeue invalid NTP... High Unreviewed
CVE-2016-1478 was published May 17, 2022
Mozilla Firefox before 48.0 allows remote attackers to spoof the location bar via crafted... Moderate Unreviewed
CVE-2016-5251 was published May 17, 2022
Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo... Moderate Unreviewed
CVE-2016-2839 was published May 17, 2022
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote... High Unreviewed
CVE-2021-1505 was published May 24, 2022
PHICOMM K2(PSG1218) devices V22.5.11.5 and earlier allow unauthenticated remote code execution... Critical Unreviewed
CVE-2017-11495 was published May 17, 2022
The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in... Moderate Unreviewed
CVE-2008-4907 was published May 17, 2022
The AMS module has a vulnerability in input validation. Successful exploitation of this... High Unreviewed
CVE-2022-31762 was published Jun 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database