Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,563 advisories

Loading
Dolibarr ERP/CRM 3.3.1 does not properly validate user input in viewimage.php and barcode.lib.php... Critical Unreviewed
CVE-2013-2093 was published May 5, 2022
ReviewBoard and Djblets library are vulnerable to code execution Critical
CVE-2013-4409 was published for ReviewBoard (pip) May 5, 2022
Cryptocat before 2.0.22 has Remote Denial of Service via username High Unreviewed
CVE-2013-4100 was published May 5, 2022
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview Critical Unreviewed
CVE-2013-2259 was published May 5, 2022
evince is missing a check on number of pages which can lead to a segmentation fault Moderate Unreviewed
CVE-2013-3718 was published May 5, 2022
Symfony collectionCascaded and collectionCascadedDeeply fields security bypass High
CVE-2013-4751 was published for symfony/symfony (Composer) May 5, 2022
cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh in OpenShift does not properly... High Unreviewed
CVE-2013-0165 was published May 5, 2022
Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds. Moderate Unreviewed
CVE-2013-0180 was published May 5, 2022
Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm. Moderate Unreviewed
CVE-2013-0178 was published May 5, 2022
GLPI 0.83.7 has Local File Inclusion in common.tabs.php. High Unreviewed
CVE-2013-2227 was published May 5, 2022
yum does not properly handle bad metadata, which allows an attacker to cause a denial of service... Critical Unreviewed
CVE-2013-1910 was published May 5, 2022
The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. Critical Unreviewed
CVE-2013-7483 was published May 5, 2022
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could allow an... High Unreviewed
CVE-2013-7333 was published May 5, 2022
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... High Unreviewed
CVE-2022-20779 was published May 5, 2022
The nsWindow implementation in the browser engine in Mozilla Firefox before 3.6.28 and 4.x... High Unreviewed
CVE-2012-0463 was published May 4, 2022
Bugzilla 2.x and 3.x before 3.4.14, 3.5.x and 3.6.x before 3.6.8, 3.7.x and 4.0.x before 4.0.4,... Moderate Unreviewed
CVE-2012-0448 was published May 4, 2022
Apache Struts Remote Java Code Execution Critical
CVE-2012-0391 was published for org.apache.struts.xwork:xwork-core (Maven) May 4, 2022
sunSUNQ
Credited to sunSUNQ
The Smart Install feature in Cisco IOS 12.2, 15.0, 15.1, and 15.2 allows remote attackers to... High Unreviewed
CVE-2012-0385 was published May 4, 2022
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM)... High Unreviewed
CVE-2012-0356 was published May 4, 2022
Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM)... High Unreviewed
CVE-2012-0355 was published May 4, 2022
The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and... High Unreviewed
CVE-2012-0353 was published May 4, 2022
The Threat Detection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and... High Unreviewed
CVE-2012-0354 was published May 4, 2022
Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement... Moderate Unreviewed
CVE-2012-0338 was published May 4, 2022
Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement... Moderate Unreviewed
CVE-2012-0339 was published May 4, 2022
The awhost32 service in Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite... Moderate Unreviewed
CVE-2012-0292 was published May 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database