Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not... High Unreviewed
CVE-2016-4485 was published May 17, 2022
The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5... High Unreviewed
CVE-2016-4580 was published May 17, 2022
Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle... High Unreviewed
CVE-2016-5565 was published May 17, 2022
Siemens SIMATIC WinCC 7.0 through SP3 and 7.2 allows remote attackers to read arbitrary WinCC... High Unreviewed
CVE-2016-5744 was published May 17, 2022
IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 allows... High Unreviewed
CVE-2016-5971 was published May 17, 2022
A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote... High Unreviewed
CVE-2016-6446 was published May 17, 2022
AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext... High Unreviewed
CVE-2016-6537 was published May 17, 2022
The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) cf-mysql-release 27 and 28... High Unreviewed
CVE-2016-6653 was published May 17, 2022
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows... High Unreviewed
CVE-2016-7031 was published May 17, 2022
In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted... High Unreviewed
CVE-2016-9183 was published May 17, 2022
Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/expPaginator.php" affecting... High Unreviewed
CVE-2016-9134 was published May 17, 2022
Artifex Software, Inc. MuJS before a5c747f1d40e8d6659a37a8d25f13fb5acf8e767 allows context... High Unreviewed
CVE-2016-9017 was published May 17, 2022
Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/framework/modules/help... High Unreviewed
CVE-2016-9135 was published May 17, 2022
In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0,... High Unreviewed
CVE-2016-9184 was published May 17, 2022
Moxa MiiNePort_E1_4641 devices with firmware 1.1.10 Build 09120714, MiiNePort_E1_7080 devices... High Unreviewed
CVE-2016-2295 was published May 17, 2022
The System Configuration Protocol (SCP) core messaging interface in Cisco Prime Network Registrar... High Unreviewed
CVE-2016-1427 was published May 17, 2022
WordPress before 4.5.3 allows remote attackers to obtain sensitive revision-history information... High Unreviewed
CVE-2016-5835 was published May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006... High Unreviewed
CVE-2016-1079 was published May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006... High Unreviewed
CVE-2016-1092 was published May 17, 2022
Cisco WebEx Meeting Center Original Release Base allows remote attackers to obtain sensitive... High Unreviewed
CVE-2016-1410 was published May 17, 2022
Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System uses the... High Unreviewed
CVE-2016-1404 was published May 17, 2022
HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or... High Unreviewed
CVE-2016-2015 was published May 17, 2022
HPE Service Manager 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, and 9.41 allows remote attackers to... High Unreviewed
CVE-2016-2025 was published May 17, 2022
IBM API Connect (aka APIConnect) before 5.0.3.0 with NPM before 2.2.8 includes certain internal... High Unreviewed
CVE-2016-3012 was published May 17, 2022
Tcl in Apple OS X before 10.11.5 allows remote attackers to obtain sensitive information by... High Unreviewed
CVE-2016-1853 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database