Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,757
Maven
5,000+
npm
4,363
NuGet
766
pip
4,128
Pub
12
RubyGems
961
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,887 advisories

Loading
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated... Low Unreviewed
CVE-2013-0537 was published May 5, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime... Low Unreviewed
CVE-2013-0535 was published May 5, 2022
Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to... Low Unreviewed
CVE-2013-0525 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in IBM Informix Open Admin Tool (OAT) 2.x and 3.x before... Low Unreviewed
CVE-2013-0492 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management - Collaborative... Low Unreviewed
CVE-2013-0478 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in IBM WebSphere Message Broker 7.0 before 7.0.0.6 and 8... Low Unreviewed
CVE-2013-0466 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling... Low Unreviewed
CVE-2013-0468 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5, Maximo Asset... Low Unreviewed
CVE-2013-0457 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM)... Low Unreviewed
CVE-2013-0453 was published May 5, 2022
Unspecified vulnerability in the VirtualBox component in Oracle Virtualization 4.0, 4.1, and 4.2... Low Unreviewed
CVE-2013-0420 was published May 5, 2022
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect... Low Unreviewed
CVE-2013-0412 was published May 5, 2022
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and... Low Unreviewed
CVE-2013-0414 was published May 5, 2022
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality,... Low Unreviewed
CVE-2013-0404 was published May 5, 2022
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect... Low Unreviewed
CVE-2013-0403 was published May 5, 2022
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Low Unreviewed
CVE-2013-0390 was published May 5, 2022
The hidp_setup_hid function in net/bluetooth/hidp/core.c in the Linux kernel before 3.7.6 does... Low Unreviewed
CVE-2013-0349 was published May 5, 2022
Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain... Low Unreviewed
CVE-2013-0370 was published May 5, 2022
The ipv6_create_tempaddr function in net/ipv6/addrconf.c in the Linux kernel through 3.8 does not... Low Unreviewed
CVE-2013-0343 was published May 5, 2022
thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log... Low Unreviewed
CVE-2013-0348 was published May 5, 2022
varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log... Low Unreviewed
CVE-2013-0345 was published May 5, 2022
** DISPUTED ** Apache Tomcat 7.x uses world-readable permissions for the log directory and its... Low Unreviewed
CVE-2013-0346 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in the Rendered links formatter in the Menu Reference... Low Unreviewed
CVE-2013-0324 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in settings.php in ownCloud before 4.0.12 and 4.5.x... Low Unreviewed
CVE-2013-0307 was published May 5, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4... Low Unreviewed
CVE-2013-0297 was published May 5, 2022
manifests/base.pp in the puppetlabs-cinder module, as used in PackStack, uses world-readable... Low Unreviewed
CVE-2013-0266 was published May 5, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database