GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
9,969 advisories
Filter by severity
OpenStack Glance logs user name and password in cleartext
Moderate
CVE-2013-0212
was published
for
glance
(pip)
May 5, 2022
The GUI installer in JBoss Enterprise Application Platform (EAP) and Enterprise Web Platform (EWP...
Low
Unreviewed
CVE-2013-0218
was published
May 5, 2022
The external node classifier (ENC) API in Foreman before 1.1 allows remote attackers to obtain...
Moderate
Unreviewed
CVE-2013-0174
was published
May 5, 2022
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local...
Low
Unreviewed
CVE-2013-0157
was published
May 5, 2022
The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke...
Low
Unreviewed
CVE-2013-0160
was published
May 5, 2022
Outlook in Microsoft Office for Mac 2008 before 12.3.6 and Office for Mac 2011 before 14.3.2...
Moderate
Unreviewed
CVE-2013-0095
was published
May 5, 2022
Microsoft Internet Explorer 6 through 9 does not properly perform auto-selection of the Shift JIS...
Moderate
Unreviewed
CVE-2013-0015
was published
May 5, 2022
The Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2,...
Moderate
Unreviewed
CVE-2013-0001
was published
May 5, 2022
Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.21, 3...
Moderate
Unreviewed
CVE-2013-4088
was published
May 5, 2022
The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without...
Moderate
Unreviewed
CVE-2013-3587
was published
May 5, 2022
Kernel/Modules/AgentTicketPhone.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.20, 3.1...
Moderate
Unreviewed
CVE-2013-3551
was published
May 5, 2022
The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and...
Moderate
Unreviewed
CVE-2013-4166
was published
May 5, 2022
An Information Disclosure vulnerability exists due to insufficient validation of authentication...
Moderate
Unreviewed
CVE-2013-1602
was published
May 5, 2022
An Information Disclosure vulnerability exists due to a failure to restrict access on the lums...
Moderate
Unreviewed
CVE-2013-1601
was published
May 5, 2022
Karotz API 12.07.19.00: Session Token Information Disclosure
Moderate
Unreviewed
CVE-2013-4868
was published
May 5, 2022
ClamAV before 0.97.7: dbg_printhex possible information leak
High
Unreviewed
CVE-2013-7089
was published
May 5, 2022
RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates
Moderate
Unreviewed
CVE-2013-4518
was published
May 5, 2022
Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure
High
Unreviewed
CVE-2013-4105
was published
May 5, 2022
Cryptocat strophe.js before 2.0.22 has information disclosure
High
Unreviewed
CVE-2013-2262
was published
May 5, 2022
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure
High
Unreviewed
CVE-2013-2261
was published
May 5, 2022
MiniUPnPd has information disclosure use of snprintf()
High
Unreviewed
CVE-2013-2600
was published
May 5, 2022
Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea...
Moderate
Unreviewed
CVE-2022-25787
was published
May 5, 2022
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to...
Moderate
Unreviewed
CVE-2022-20734
was published
May 5, 2022
The SVG Filters implementation in Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR...
Moderate
Unreviewed
CVE-2012-0456
was published
May 4, 2022
ProTip!
Advisories are also available from the
GraphQL API