Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,575 advisories

Loading
Arora, possibly 0.11 and other versions, does not use a certain font when rendering certificate... Moderate Unreviewed
CVE-2011-3367 was published May 17, 2022
phpmyadmin.css.php in phpMyAdmin 3.4.x before 3.4.6 allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2011-3646 was published May 17, 2022
OpenConnect before 2.25 does not properly validate X.509 certificates, which allows man-in-the... Moderate Unreviewed
CVE-2010-3901 was published May 17, 2022
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to... Low Unreviewed
CVE-2008-4640 was published May 17, 2022
Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields... Moderate Unreviewed
CVE-2011-4530 was published May 17, 2022
libsecurity in Apple Mac OS X before 10.7.2 does not properly handle errors during processing of... Moderate Unreviewed
CVE-2011-3227 was published May 17, 2022
MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the... Moderate Unreviewed
CVE-2011-5055 was published May 17, 2022
The Safari Settings feature in Safari in Apple iOS 4.x before 4.3 does not properly implement the... Moderate Unreviewed
CVE-2011-0159 was published May 17, 2022
IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino does not properly handle URLs that... Low Unreviewed
CVE-2008-7286 was published May 17, 2022
The Security component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x... Moderate Unreviewed
CVE-2011-1320 was published May 17, 2022
The Plug-in component in IBM WebSphere Application Server (WAS) before 7.0.0.15 does not properly... High Unreviewed
CVE-2011-1309 was published May 17, 2022
Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent... Moderate Unreviewed
CVE-2011-2170 was published May 17, 2022
Array index error in the VF font parser in the dvi-backend component in Evince 2.32 and earlier... High Unreviewed
CVE-2010-2641 was published May 17, 2022
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 does not properly handle the... Moderate Unreviewed
CVE-2008-7289 was published May 17, 2022
Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS... Low Unreviewed
CVE-2011-1068 was published May 17, 2022
Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC... High Unreviewed
CVE-2011-1323 was published May 17, 2022
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and... High Unreviewed
CVE-2010-1562 was published May 17, 2022
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and... High Unreviewed
CVE-2010-1563 was published May 17, 2022
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S11... High Unreviewed
CVE-2010-1561 was published May 17, 2022
An unspecified Domino API in IBM Lotus Notes Traveler before 8.5.1.1 does not properly handle... Moderate Unreviewed
CVE-2010-4553 was published May 17, 2022
IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2010-4550 was published May 17, 2022
The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8... High Unreviewed
CVE-2011-2883 was published May 17, 2022
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run... Low Unreviewed
CVE-2010-3862 was published May 17, 2022
Joomla! 1.6.x before 1.6.2 does not prevent page rendering inside a frame in a third-party HTML... Moderate Unreviewed
CVE-2011-2892 was published May 17, 2022
Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified... High Unreviewed
CVE-2010-4803 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database