Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,002 advisories

Loading
Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and... High Unreviewed
CVE-2016-6367 was published May 17, 2022
IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote authenticated users to... High Unreviewed
CVE-2016-2875 was published May 17, 2022
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before... High Unreviewed
CVE-2016-0326 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0328 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0236 was published May 17, 2022
Watchguard XCS 9.2 and 10.0 before build 150522 allow remote authenticated users to execute... Moderate Unreviewed
CVE-2015-5453 was published May 17, 2022
IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote... High Unreviewed
CVE-2015-4930 was published May 17, 2022
Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with... Critical Unreviewed
CVE-2016-5640 was published May 17, 2022
Corega CG-WLBARGL devices allow remote authenticated users to execute arbitrary commands via... High Unreviewed
CVE-2016-4822 was published May 17, 2022
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell... Critical Unreviewed
CVE-2015-0857 was published May 17, 2022
flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices... High Unreviewed
CVE-2016-2332 was published May 17, 2022
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to... High Unreviewed
CVE-2015-0538 was published May 17, 2022
Zenoss Core through 5 Beta 3 does not require a password for modifying the pager command string,... Moderate Unreviewed
CVE-2014-6260 was published May 17, 2022
IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check... Low Unreviewed
CVE-2015-5011 was published May 17, 2022
SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on... High Unreviewed
CVE-2015-7839 was published May 17, 2022
The xmlrpc.cgi Webmin script in IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2... High Unreviewed
CVE-2015-2011 was published May 17, 2022
rubygem-openshift-origin-console in Red Hat OpenShift 2.2 allows remote authenticated users to... Moderate Unreviewed
CVE-2015-5274 was published May 17, 2022
The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated users to execute arbitrary... High Unreviewed
CVE-2015-5190 was published May 17, 2022
BitTorrent and uTorrent allow remote attackers to inject command line parameters and execute... High Unreviewed
CVE-2015-5474 was published May 17, 2022
The log-gather implementation in the web administration interface in EMC Isilon OneFS 6.5.x.x... High Unreviewed
CVE-2015-4525 was published May 17, 2022
cloner.functions.php in the XCloner plugin 3.1.2 for WordPress allows remote authenticated users... Moderate Unreviewed
CVE-2015-4336 was published May 17, 2022
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute... High Unreviewed
CVE-2015-2208 was published May 17, 2022
Common LaTeX Service Interface (CLSI) before 0.1.3, as used in ShareLaTeX before 0.1.3, allows... Moderate Unreviewed
CVE-2015-0934 was published May 17, 2022
The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x through... High Unreviewed
CVE-2014-9277 was published May 17, 2022
cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote authenticated... Moderate Unreviewed
CVE-2013-7418 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database