Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,643
Maven
5,000+
npm
4,268
NuGet
760
pip
4,062
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,776 advisories

Loading
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7... Moderate Unreviewed
CVE-2016-0777 was published May 13, 2022
Open edX edx-platform before 2015-08-25 requires use of the database for storage of SAML SSO... Moderate Unreviewed
CVE-2015-6671 was published May 13, 2022
The svcauth_gss_accept_sec_context function in lib/rpc/svc_auth_gss.c in MIT Kerberos 5 (aka krb5... Moderate Unreviewed
CVE-2014-9423 was published May 13, 2022
The web-based management UI in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 allows remote... Moderate Unreviewed
CVE-2012-6590 was published May 13, 2022
The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.16, 7.0.x before 7.0.13, and... Moderate Unreviewed
CVE-2017-5583 was published May 13, 2022
The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.17, 7.x before 7.0.15, and 7... Moderate Unreviewed
CVE-2017-7644 was published May 13, 2022
The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote... Moderate Unreviewed
CVE-2017-7216 was published May 13, 2022
ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled,... Moderate Unreviewed
CVE-2012-6459 was published May 13, 2022
A vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300... Moderate Unreviewed
CVE-2016-9159 was published May 13, 2022
bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1... Moderate Unreviewed
CVE-2013-2273 was published May 13, 2022
The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin... Moderate Unreviewed
CVE-2013-2272 was published May 13, 2022
The HTTPAuthorized function in bitcoinrpc.cpp in bitcoind 0.8.1 provides information about... Moderate Unreviewed
CVE-2013-4165 was published May 13, 2022
Certain run-time memory protection mechanisms in the GNU C Library (aka glibc or libc6) print... Moderate Unreviewed
CVE-2010-3192 was published May 13, 2022
Information disclosure vulnerability in storage media in systems with Intel Optane memory module... Moderate Unreviewed
CVE-2018-3619 was published May 13, 2022
Unspecified vulnerability in the IBM Maximo Anywhere application 7.5.1 through 7.5.1.2 for... Moderate Unreviewed
CVE-2015-4945 was published May 13, 2022
Marp versions v0.0.10 and earlier may allow an attacker to access local resources and files using... Moderate Unreviewed
CVE-2017-2239 was published May 13, 2022
Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of... Moderate Unreviewed
CVE-2018-9056 was published May 13, 2022
CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to... Moderate Unreviewed
CVE-2017-6071 was published May 13, 2022
An issue was discovered in Bloop Airmail 3 3.5.9 for macOS. The "send" command in the airmail://... Moderate Unreviewed
CVE-2018-15668 was published May 13, 2022
The ipv6 component in Cisco IOS before 15.1(4)M1.3 allows remote attackers to conduct... Moderate Unreviewed
CVE-2011-2059 was published May 13, 2022
Google Chrome before 13.0.782.107 allows remote attackers to obtain potentially sensitive... Moderate Unreviewed
CVE-2011-2800 was published May 13, 2022
The Cascading Style Sheets (CSS) implementation in Google Chrome before 12.0.742.91 does not... Moderate Unreviewed
CVE-2011-1810 was published May 13, 2022
OpenStack Identity Keystone Exposure of Sensitive Information Moderate
CVE-2014-3621 was published for keystone (pip) May 13, 2022
OpenStack Keystone Logs Passwords Moderate
CVE-2015-3646 was published for keystone (pip) May 13, 2022
The Web Workers implementation in Google Chrome before 10.0.648.127 allows remote attackers to... Moderate Unreviewed
CVE-2011-1190 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database