Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x,... High Unreviewed
CVE-2011-0376 was published May 17, 2022
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute... High Unreviewed
CVE-2011-3497 was published May 17, 2022
Unspecified vulnerability in Opera before 9.63 allows remote attackers to "reveal random data"... High Unreviewed
CVE-2008-5683 was published May 17, 2022
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4,... High Unreviewed
CVE-2011-1643 was published May 17, 2022
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive... High Unreviewed
CVE-2011-1350 was published May 17, 2022
The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x... High Unreviewed
CVE-2013-1185 was published May 17, 2022
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border... High Unreviewed
CVE-2013-4780 was published May 17, 2022
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border... High Unreviewed
CVE-2013-4778 was published May 17, 2022
DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote... High Unreviewed
CVE-2013-5487 was published May 17, 2022
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and... High Unreviewed
CVE-2013-0693 was published May 17, 2022
SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5... High Unreviewed
CVE-2013-6868 was published May 17, 2022
NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware... High Unreviewed
CVE-2013-4775 was published May 17, 2022
administrator.cfc in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to bypass... High Unreviewed
CVE-2013-0632 was published May 17, 2022
The OpenVPN module in Synology DiskStation Manager (DSM) 4.3-3810 update 1 has a hardcoded root... High Unreviewed
CVE-2014-2264 was published May 17, 2022
OpenStack Swift Discloses Secret URLs to Timing Attack High
CVE-2014-0006 was published for swift (pip) May 17, 2022
EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote attackers to read arbitrary files... High Unreviewed
CVE-2014-0644 was published May 17, 2022
Android before 4.4 does not properly arrange for seeding of the OpenSSL PRNG, which makes it... High Unreviewed
CVE-2013-7373 was published May 17, 2022
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read... High Unreviewed
CVE-2014-4153 was published May 17, 2022
Plone Information Disclosure High
CVE-2012-5505 was published for Plone (pip) May 17, 2022
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2... High Unreviewed
CVE-2014-8244 was published May 17, 2022
The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers... High Unreviewed
CVE-2014-2374 was published May 17, 2022
The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain... High Unreviewed
CVE-2014-8425 was published May 17, 2022
The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers... High Unreviewed
CVE-2014-8678 was published May 17, 2022
django-markupfield Arbitrary File Read High
CVE-2015-0846 was published for django-markupfield (pip) May 17, 2022
Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database... High Unreviewed
CVE-2014-5405 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database