Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,970 advisories

Loading
The SVG Filters implementation in Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR... Moderate Unreviewed
CVE-2012-0456 was published May 4, 2022
Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 do not... Moderate Unreviewed
CVE-2012-0447 was published May 4, 2022
The install-chef-suse.sh script shipped with crowbar before 2012-10-02 is creating files... Moderate Unreviewed
CVE-2012-0433 was published May 4, 2022
LanItems.ycp in save_y2logs in yast2-network before 2.24.4 in SUSE YaST writes cleartext Wi-Fi... High Unreviewed
CVE-2012-0425 was published May 4, 2022
The SUSE Audit Log Keeper daemon before 0.2.1-0.4.6.1 for SUSE Manager and Spacewalk uses world... Low Unreviewed
CVE-2012-0421 was published May 4, 2022
Janetter before 3.3.0.0 (aka 3.3.0) allows remote attackers to obtain session information for... Moderate Unreviewed
CVE-2012-0328 was published May 4, 2022
The Cookpad 1.5.16 and earlier and Cookpad Noseru 1.1.1 and earlier applications for Android do... Moderate Unreviewed
CVE-2012-0316 was published May 4, 2022
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users... Moderate Unreviewed
CVE-2012-0263 was published May 4, 2022
Advantech/BroadWin WebAccess 7.0 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2012-0236 was published May 4, 2022
HP Onboard Administrator (OA) before 3.50 allows remote attackers to obtain sensitive information... Moderate Unreviewed
CVE-2012-0130 was published May 4, 2022
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice... Moderate Unreviewed
CVE-2012-0037 was published May 4, 2022
Microsoft Internet Explorer 6 through 9 does not properly perform copy-and-paste operations,... Moderate Unreviewed
CVE-2012-0010 was published May 4, 2022
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository axios/axios prior... High Unreviewed
CVE-2022-1214 was published May 4, 2022
A bug exists where an attacker can read the kernel log through exposed Zircon kernel addresses... Moderate Unreviewed
CVE-2022-0882 was published May 4, 2022
The (1) JScript 5.8 and (2) VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2... Moderate Unreviewed
CVE-2011-0031 was published May 3, 2022
The Relational Data Services component in IBM DB2 9.5 before FP5 allows attackers to obtain the... High Unreviewed
CVE-2009-4333 was published May 3, 2022
The RAND scalar function in the Common Code Infrastructure component in IBM DB2 9.5 before FP5... Moderate Unreviewed
CVE-2009-4326 was published May 3, 2022
Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this... Low Unreviewed
CVE-2008-2937 was published May 3, 2022
Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform a security zone check... Moderate Unreviewed
CVE-2007-3656 was published May 3, 2022
Adobe Macromedia Flash Player 7 and 9, when used with Opera before 9.20 or Konqueror before... Moderate Unreviewed
CVE-2007-2022 was published May 3, 2022
The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey... Moderate Unreviewed
CVE-2007-0778 was published May 3, 2022
NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to... Low Unreviewed
CVE-2006-4537 was published May 3, 2022
The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before... High Unreviewed
CVE-2016-6668 was published May 3, 2022
Exposure of repository credentials to external third-party sources in Rancher High
CVE-2021-36778 was published for github.com/rancher/rancher (Go) May 2, 2022
dasMulli
Credited to dasMulli
Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 allows local users to read arbitrary files... Moderate Unreviewed
CVE-2010-1457 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database