Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users... Low Unreviewed
CVE-2012-0959 was published May 17, 2022
IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3, when ClearQuest... Low Unreviewed
CVE-2012-2165 was published May 17, 2022
The Ubercart AJAX Cart 6.x-2.x before 6.x-2.1 for Drupal stores the PHP session id in the... Low Unreviewed
CVE-2012-2731 was published May 17, 2022
Typo3 Backend Configuration XSS Vulnerability Low
CVE-2012-3529 was published for typo3/cms (Composer) May 17, 2022
The DNAv4 protocol implementation in the DHCP component in Apple iOS before 6 sends Wi-Fi packets... Low Unreviewed
CVE-2012-3725 was published May 17, 2022
The Passcode Lock implementation in Apple iOS before 6 does not properly interact with the "Slide... Low Unreviewed
CVE-2012-3735 was published May 17, 2022
Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3,... Low Unreviewed
CVE-2012-4832 was published May 17, 2022
Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when moving disks between storage... Low Unreviewed
CVE-2012-5516 was published May 17, 2022
OpenStack Glance is vulnerable to Exposure of Sensitive Information Low
CVE-2013-1840 was published for glance (pip) May 17, 2022
rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI... Low Unreviewed
CVE-2013-1923 was published May 17, 2022
The Administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0... Low Unreviewed
CVE-2013-2976 was published May 17, 2022
frontcontroller.jsp in IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk... Low Unreviewed
CVE-2013-2998 was published May 17, 2022
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not set the... Low Unreviewed
CVE-2013-3984 was published May 17, 2022
The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and earlier, when using FS: or GS:... Low Unreviewed
CVE-2013-4368 was published May 17, 2022
IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows... Low Unreviewed
CVE-2013-5380 was published May 17, 2022
IBM InfoSphere Information Server 8.0, 8.1, 8.5, 8.7, and 9.1 allows local users to obtain... Low Unreviewed
CVE-2013-5440 was published May 17, 2022
IBM Security AppScan Enterprise 5.6 through 8.7.0.1 allows remote authenticated users to read... Low Unreviewed
CVE-2013-5453 was published May 17, 2022
IBM FileNet Business Process Framework 4.1.0 allows remote authenticated users to read arbitrary... Low Unreviewed
CVE-2013-5452 was published May 17, 2022
The ISL Desktop plugin for Windows before 1.4.7 for ISL Light 3.5.4 and earlier allows remote... Low Unreviewed
CVE-2013-6237 was published May 17, 2022
IBM WebSphere Application Server 7.x before 7.0.0.31, when simpleFileServlet static file caching... Low Unreviewed
CVE-2013-6330 was published May 17, 2022
IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837 and 7.5.x before 7.5.0.5... Low Unreviewed
CVE-2013-6741 was published May 17, 2022
IBM Rational Team Concert (RTC) 3.x before 3.0.1.6 IF3 and 4.x before 4.0.7 does not properly... Low Unreviewed
CVE-2014-3050 was published May 17, 2022
IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4... Low Unreviewed
CVE-2014-3077 was published May 17, 2022
The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL... Low Unreviewed
CVE-2014-3561 was published May 17, 2022
Apple iOS before 8 does not follow the intended configuration setting for text-message preview on... Low Unreviewed
CVE-2014-4356 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database