Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,960 advisories

Loading
HPE Performance Center 11.52, 12.00, 12.01, 12.20, and 12.50 allows remote attackers to bypass... High Unreviewed
CVE-2016-4382 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4258 was published May 17, 2022
Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0... Moderate Unreviewed
CVE-2016-3898 was published May 17, 2022
Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute... Critical Unreviewed
CVE-2016-6980 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4261 was published May 17, 2022
Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows... Moderate Unreviewed
CVE-2016-3951 was published May 17, 2022
Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the ... Moderate Unreviewed
CVE-2008-6417 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in refbase before 0.9.5 allows remote attackers to... Moderate Unreviewed
CVE-2008-6400 was published May 17, 2022
otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service ... High Unreviewed
CVE-2016-4704 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4257 was published May 17, 2022
systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before... High Unreviewed
CVE-2016-3886 was published May 17, 2022
A vulnerability in Cisco Webex Meetings for Android could allow an authenticated, remote attacker... Moderate Unreviewed
CVE-2021-1467 was published May 24, 2022
A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow... High Unreviewed
CVE-2021-1384 was published May 24, 2022
A race condition in fastrpc kernel driver for dynamic process creation can lead to use after free... Moderate Unreviewed
CVE-2021-1958 was published May 24, 2022
Session fixation vulnerability in Edikon phpShop 0.8.1 allows remote attackers to hijack web... Moderate Unreviewed
CVE-2008-6455 was published May 17, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software... High Unreviewed
CVE-2021-1252 was published May 24, 2022
An unauthenticated attacker can send a specially crafted network packet to delete a user from the... High Unreviewed
CVE-2022-31484 was published Jun 7, 2022
Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address... Moderate Unreviewed
CVE-2022-30738 was published Jun 8, 2022
Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... High Unreviewed
CVE-2022-30735 was published Jun 8, 2022
An unauthenticated attacker could arbitrarily upload firmware files to the target device,... High Unreviewed
CVE-2022-31480 was published Jun 7, 2022
FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File... High Unreviewed
CVE-2022-30860 was published Jun 7, 2022
FUDforum 3.1.2 is vulnerable to Stored XSS via Forum Name field in Forum Manager Feature. Moderate Unreviewed
CVE-2022-30861 was published Jun 7, 2022
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab... High Unreviewed
CVE-2022-1944 was published Jun 7, 2022
SAP Analysis for Microsoft Office - version 2.8, allows an attacker with high privileges to read... Moderate Unreviewed
CVE-2021-38175 was published May 24, 2022
The Brizy Page Builder plugin <= 2.3.11 for WordPress was vulnerable to stored XSS by lower... Moderate Unreviewed
CVE-2021-38344 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database