Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

915 advisories

Loading
QuickerBB version <= 0.7.2 is vulnerable to arbitrary file writes which can lead to remote code... Critical Unreviewed
CVE-2017-1000169 was published May 17, 2022
Indeo Otter through 1.7.4 mishandles a "</script>" substring in an initial DP payload, which... Critical Unreviewed
CVE-2017-17086 was published May 17, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed
CVE-2017-14909 was published May 17, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed
CVE-2017-14908 was published May 17, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed
CVE-2017-14914 was published May 17, 2022
Improper Input Validation in IpMatcher Critical
CVE-2021-33318 was published for IpMatcher (NuGet) May 17, 2022
Format string vulnerability in the php_snmp_error function in ext/snmp/snmp.c in PHP before 5.5... Critical Unreviewed
CVE-2016-4071 was published May 14, 2022
The Phar extension in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote... Critical Unreviewed
CVE-2016-4072 was published May 14, 2022
The php_wddx_process_data function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10... Critical Unreviewed
CVE-2016-7129 was published May 14, 2022
A vulnerability in the pluggable authentication module (PAM) of Juniper Networks Junos OS may... Critical Unreviewed
CVE-2017-10615 was published May 14, 2022
It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags... Critical Unreviewed
CVE-2017-14589 was published May 14, 2022
Cobbler vulnerable to arbitrary code execution Critical
CVE-2017-1000469 was published for cobbler (pip) May 14, 2022
b2evolution version 6.6.0 - 6.8.10 is vulnerable to input validation (backslash and single quote... Critical Unreviewed
CVE-2017-1000423 was published May 14, 2022
An issue was discovered in Skybox Platform before 7.5.201. Remote Unauthenticated Code Execution... Critical Unreviewed
CVE-2015-9246 was published May 14, 2022
Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to... Critical Unreviewed
CVE-2017-11357 was published May 14, 2022
Apache NiFi XSS issue in context path handling Critical
CVE-2017-15697 was published for org.apache.nifi:nifi (Maven) May 14, 2022
In SUPERAntiSpyware Professional Trial 6.0.1254, the SASKUTIL.SYS driver allows privilege... Critical Unreviewed
CVE-2018-6476 was published May 14, 2022
Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP... Critical Unreviewed
CVE-2017-2750 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-5815 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-5816 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-5817 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-5819 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-8956 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed
CVE-2017-8981 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2... Critical Unreviewed
CVE-2017-5805 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database