GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,129

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,975 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The odl-mdsal-apidocs feature in OpenDaylight Helium allow remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2015-1857 was published May 13, 2022

The Humax Wi-Fi Router model HG100R-* 2.0.6 is prone to an authentication bypass vulnerability... Critical Unreviewed

CVE-2017-11435 was published May 13, 2022

The knife bootstrap command in chef Infra client before version 15.4.45 leaks the validator.pem... High Unreviewed

CVE-2015-8559 was published May 13, 2022

Exposure of Sensitive Information to an Unauthorized Actor in Apache Hadoop Moderate

CVE-2016-5001 was published for org.apache.hadoop:hadoop-common (Maven) May 13, 2022

Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component... Moderate Unreviewed

CVE-2016-5504 was published May 13, 2022

CirCarLife Scada before 4.3 allows remote attackers to obtain sensitive information via a direct... Critical Unreviewed

CVE-2018-12634 was published May 13, 2022

An issue was discovered in CIRCONTROL CirCarLife before 4.3. Due to the storage of multiple... Moderate Unreviewed

CVE-2018-16672 was published May 13, 2022

Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the... Moderate Unreviewed

CVE-2014-0174 was published May 13, 2022

kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with... Low Unreviewed

CVE-2014-3917 was published May 13, 2022

The mmc_ioctl_cdrom_read_data function in drivers/cdrom/cdrom.c in the Linux kernel through 3.10... Low Unreviewed

CVE-2013-2164 was published May 13, 2022

concrete5 before 5.6.3 allows remote attackers to obtain the installation path via a direct... Moderate Unreviewed

CVE-2014-5107 was published May 13, 2022

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct... Moderate Unreviewed

CVE-2019-7436 was published May 13, 2022

PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for... Moderate Unreviewed

CVE-2019-7429 was published May 13, 2022

PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a... Moderate Unreviewed

CVE-2019-7431 was published May 13, 2022

PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a... Moderate Unreviewed

CVE-2019-7434 was published May 13, 2022

Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1... Moderate Unreviewed

CVE-2011-1245 was published May 13, 2022

The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in... Low Unreviewed

CVE-2012-2420 was published May 13, 2022

The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in... Low Unreviewed

CVE-2012-2423 was published May 13, 2022

Microsoft Internet Explorer, when the Invisible Hand extension is enabled, uses cookies during... Moderate Unreviewed

CVE-2010-1852 was published May 13, 2022

Microsoft msxml.dll, as used in Internet Explorer 8 on Windows 7, allows remote attackers to... Moderate Unreviewed

CVE-2011-1713 was published May 13, 2022

Microsoft Internet Explorer 6 through 8 does not properly restrict script access to content from... Moderate Unreviewed

CVE-2010-3330 was published May 13, 2022

Microsoft Internet Explorer 7 through 9 does not properly create and initialize string data,... Moderate Unreviewed

CVE-2012-1873 was published May 13, 2022

Microsoft Internet Explorer 6 through 9 does not block cross-domain scrolling events, which... Moderate Unreviewed

CVE-2012-1882 was published May 13, 2022

The implementation of HTML content creation in Microsoft Internet Explorer 6 through 8 does not... Moderate Unreviewed

CVE-2010-3327 was published May 13, 2022

Microsoft Internet Explorer 6 through 8 does not properly handle unspecified special characters... Moderate Unreviewed

CVE-2010-3325 was published May 13, 2022

Previous 1…351…399 Next

Previous 1 2 … 349 350 351 352 353 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,975 advisories