GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,874 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Sierra Wireless ALEOS before 4.4.2 on AirLink ES, GX, and LS devices has hardcoded root accounts,... High Unreviewed

CVE-2015-2897 was published May 17, 2022

Directory traversal vulnerability in EMC Avamar Server 7.x before 7.1.2 and Avamar Virtual... High Unreviewed

CVE-2015-4527 was published May 17, 2022

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X... High Unreviewed

CVE-2015-0310 was published May 17, 2022

Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is... High Unreviewed

CVE-2015-7910 was published May 17, 2022

Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allow... High Unreviewed

CVE-2015-7908 was published May 17, 2022

Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0... High Unreviewed

CVE-2015-7470 was published May 17, 2022

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials... High Unreviewed

CVE-2015-8280 was published May 17, 2022

Advantech WebAccess before 8.1 allows remote attackers to obtain sensitive information via... High Unreviewed

CVE-2016-0853 was published May 17, 2022

Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an... High Unreviewed

CVE-2016-0958 was published May 17, 2022

CAREL PlantVisorEnhanced allows remote attackers to bypass intended access restrictions via a... High Unreviewed

CVE-2016-0867 was published May 17, 2022

Integer overflow in the BnCrypto::onTransact function in media/libmedia/ICrypto.cpp in... High Unreviewed

CVE-2016-0811 was published May 17, 2022

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the... High Unreviewed

CVE-2016-0871 was published May 17, 2022

F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1... High Unreviewed

CVE-2016-2084 was published May 17, 2022

exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in... High Unreviewed

CVE-2016-2415 was published May 17, 2022

TripleO Heat templates might allow remote attackers to obtain sensitive information from private containers High

CVE-2015-5271 was published for tripleo-heat-templates (pip) May 17, 2022

The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08... High Unreviewed

CVE-2016-2294 was published May 17, 2022

IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.0... High Unreviewed

CVE-2016-0341 was published May 17, 2022

The server in Apple FileMaker before 14.0.4 on OS X allows remote attackers to read PHP source... High Unreviewed

CVE-2016-1208 was published May 17, 2022

Trend Micro Mobile Security for iOS before 3.2.1188 does not verify the X.509 certificate of the... High Unreviewed

CVE-2016-3664 was published May 17, 2022

Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct... High Unreviewed

CVE-2015-7827 was published May 17, 2022

The up.time agent in Idera Uptime Infrastructure Monitor 7.5 and 7.6 on Linux allows remote... High Unreviewed

CVE-2015-8268 was published May 17, 2022

Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to obtain... High Unreviewed

CVE-2016-5367 was published May 17, 2022

The password-recovery feature on NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices... High Unreviewed

CVE-2015-8289 was published May 17, 2022

Cybozu Garoon 3.7 through 4.2 allows remote attackers to obtain sensitive email-reading... High Unreviewed

CVE-2016-1193 was published May 17, 2022

IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 allows... High Unreviewed

CVE-2016-0267 was published May 17, 2022

Previous 1…36…75 Next

Previous 1 2 … 34 35 36 37 38 … 74 75 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,874 advisories