Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 allow... High Unreviewed
CVE-2016-7561 was published May 17, 2022
** DISPUTED ** Moodle 3.1.2 allows remote attackers to obtain sensitive information via... High Unreviewed
CVE-2016-7919 was published May 17, 2022
HP Network Virtualization for LoadRunner and Performance Center 8.61 and 11.52 allows remote... High Unreviewed
CVE-2015-2121 was published May 17, 2022
Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which allows attackers to obtain... High Unreviewed
CVE-2016-1035 was published May 17, 2022
The administration interface on Cisco DPC3939B and DPC3941 devices allows remote attackers to... High Unreviewed
CVE-2016-1325 was published May 17, 2022
Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key... High Unreviewed
CVE-2016-1360 was published May 17, 2022
IBM IMS Enterprise Suite Data Provider before 3.2.0.1 for Microsoft .NET allows remote... High Unreviewed
CVE-2016-2887 was published May 17, 2022
The EdgeServiceImpl web service in Arcserve UDP before 5.0 Update 4 allows remote attackers to... High Unreviewed
CVE-2015-4069 was published May 17, 2022
The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote... High Unreviewed
CVE-2015-8148 was published May 17, 2022
CORE/HDD/src/wlan_hdd_wext.c in the Qualcomm Wi-Fi driver in Android before 2016-10-05 on Nexus... High Unreviewed
CVE-2016-6680 was published May 17, 2022
HPE UCMDB Browser before 4.02 allows remote attackers to obtain sensitive information or bypass... High Unreviewed
CVE-2015-6862 was published May 17, 2022
eWON devices with firmware before 10.1s0 do not have an off autocomplete attribute for a password... High Unreviewed
CVE-2015-7928 was published May 17, 2022
The User Data Services (UDS) API implementation in Cisco Unified Communications Manager 11.5... High Unreviewed
CVE-2016-6364 was published May 17, 2022
A vulnerability in the Zone-Based Firewall feature of Cisco IOS and Cisco IOS XE Software could... High Unreviewed
CVE-2016-9201 was published May 17, 2022
Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries... High Unreviewed
CVE-2016-7889 was published May 17, 2022
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to... High Unreviewed
CVE-2015-1941 was published May 17, 2022
Cisco WebEx Meeting Center does not properly restrict the content of URLs in GET requests, which... High Unreviewed
CVE-2015-4208 was published May 17, 2022
ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7,... High Unreviewed
CVE-2015-5330 was published May 17, 2022
A vulnerability in the web management interface of the Cisco Unified Communications Manager IM... High Unreviewed
CVE-2016-6464 was published May 17, 2022
Django Reuses Cached CSRF Token High
CVE-2014-0473 was published for Django (pip) May 17, 2022
MarkLee131
Credited to MarkLee131
FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote... High Unreviewed
CVE-2014-0600 was published May 17, 2022
Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin High Unreviewed
CVE-2015-1000012 was published May 17, 2022
The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote... High Unreviewed
CVE-2016-9107 was published May 17, 2022
Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows... High Unreviewed
CVE-2016-4806 was published May 17, 2022
Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from... High Unreviewed
CVE-2016-9680 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database