Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
EMC Documentum xCelerated Management System (xMS) 1.1 before P14 stores cleartext Windows Service... Low Unreviewed
CVE-2015-0527 was published May 17, 2022
Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine... Low Unreviewed
CVE-2015-1009 was published May 17, 2022
The IBM WebSphere DataPower XC10 appliance 2.1 through 2.1.0.3 and 2.5 through 2.5.0.4 retains... Low Unreviewed
CVE-2015-1970 was published May 17, 2022
The Dynamic display block module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated... Low Unreviewed
CVE-2015-5491 was published May 17, 2022
IBM Integration Bus 9 and 10 before 10.0.0.1 and WebSphere Message Broker 7 before 7.0.0.8 and 8... Low Unreviewed
CVE-2015-2018 was published May 17, 2022
IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 5.5 before 5.5... Low Unreviewed
CVE-2015-6557 was published May 17, 2022
Basware Banking (Maksuliikenne) before 8.90.07.X stores private keys in plaintext in the SQL... Low Unreviewed
CVE-2015-6746 was published May 17, 2022
Springboard in Apple iOS before 8.2 allows physically proximate attackers to bypass an intended... Low Unreviewed
CVE-2015-1064 was published May 17, 2022
IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before... Low Unreviewed
CVE-2015-1933 was published May 17, 2022
net/ipv4/netfilter/arp_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does... Low Unreviewed
CVE-2011-1170 was published May 17, 2022
net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does... Low Unreviewed
CVE-2011-1171 was published May 17, 2022
net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does... Low Unreviewed
CVE-2011-1172 was published May 17, 2022
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1... Low Unreviewed
CVE-2015-1015 was published May 17, 2022
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project... Low Unreviewed
CVE-2015-0988 was published May 17, 2022
IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password... Low Unreviewed
CVE-2015-1005 was published May 17, 2022
IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 does not prevent caching of... Low Unreviewed
CVE-2015-1996 was published May 17, 2022
The GatewayScript modules on IBM DataPower Gateways with software 7.2.0.x before 7.2.0.1, when... Low Unreviewed
CVE-2015-7412 was published May 17, 2022
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate... Low Unreviewed
CVE-2014-5231 was published May 17, 2022
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate... Low Unreviewed
CVE-2014-5233 was published May 17, 2022
Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which... Low Unreviewed
CVE-2014-5447 was published May 17, 2022
IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum... Low Unreviewed
CVE-2015-7404 was published May 17, 2022
The App Store process in CommerceKit Framework in Apple OS X before 10.10.2 places Apple ID... Low Unreviewed
CVE-2014-4499 was published May 17, 2022
dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4.x, 5.5.x, 6.x before 6.4.3, and 7.1... Low Unreviewed
CVE-2014-4818 was published May 17, 2022
EACommunicatorSrv.exe in the Framework Service in the client in Symantec Endpoint Encryption (SEE... Low Unreviewed
CVE-2015-6556 was published May 17, 2022
HP Enterprise Maps 1.00 allows remote authenticated users to read arbitrary files via a WSDL... Low Unreviewed
CVE-2014-4669 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database