Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,996 advisories

Loading
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi... Moderate Unreviewed
CVE-2020-12262 was published May 24, 2022
Stack overflow in the parse_tag function in libass/ass_parse.c in libass before 0.14.0 allows... High Unreviewed
CVE-2020-24994 was published May 24, 2022
Unspecified vulnerability in the Horde API in Horde 3.1 before 3.1.6 and 3.2 before 3.2 before 3... High Unreviewed
CVE-2008-7218 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in index.php in Nuked-Klan 1.3 beta allows remote... Moderate Unreviewed
CVE-2008-7132 was published May 17, 2022
Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote... Moderate Unreviewed
CVE-2008-7093 was published May 17, 2022
Intel Desktop and Intel Mobile Boards with BIOS firmware DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU,... Moderate Unreviewed
CVE-2008-7096 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in VirtueMart 1.0.13a and earlier allows remote... Moderate Unreviewed
CVE-2008-7204 was published May 17, 2022
Buffer overflow in Hero Super Player 3000 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2008-7162 was published May 17, 2022
userHandler.cgi in RaidSonic ICY BOX NAS firmware 2.3.2.IB.2.RS.1 allows remote attackers to... High Unreviewed
CVE-2008-7081 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in admin/comments.php in Gelato CMS 0.95 allows remote... Moderate Unreviewed
CVE-2008-7039 was published May 17, 2022
SQL injection vulnerability in the Simple Shop Galore (com_simpleshop) component for Joomla!... High Unreviewed
CVE-2008-7033 was published May 17, 2022
Adobe Digital Editions 4.5.4 and earlier has an exploitable heap overflow vulnerability.... High Unreviewed
CVE-2017-11275 was published May 17, 2022
Numara FootPrints 7.5a through 7.5a1 and 8.0 through 8.0a allows remote attackers to execute... High Unreviewed
CVE-2008-7158 was published May 17, 2022
The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 uses a small space of... Moderate Unreviewed
CVE-2008-7113 was published May 17, 2022
A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff... High Unreviewed
CVE-2020-35524 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... High Unreviewed
CVE-2021-21059 was published May 24, 2022
An information disclosure vulnerability in GitLab EE versions 13.10 and later allowed a user to... Moderate Unreviewed
CVE-2021-22233 was published May 24, 2022
In onCreateOptionsMenu of WifiNetworkDetailsFragment.java, there is a possible way for guest... High Unreviewed
CVE-2021-0602 was published May 24, 2022
In onCreate of ContactSelectionActivity.java, there is a possible way to get access to contacts... High Unreviewed
CVE-2021-0603 was published May 24, 2022
Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09,... Critical Unreviewed
CVE-2021-40684 was published May 24, 2022
The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service... High Unreviewed
CVE-2021-22008 was published May 24, 2022
seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because it uses execlp and... High Unreviewed
CVE-2021-41387 was published May 24, 2022
The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing.... Moderate Unreviewed
CVE-2021-21992 was published May 24, 2022
An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. An attacker can obtain a user... Moderate Unreviewed
CVE-2021-40654 was published May 24, 2022
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4... High Unreviewed
CVE-2021-34415 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database