GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,915

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,575 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before... High Unreviewed

CVE-2012-4357 was published May 17, 2022

The DiagTraceR3Info function in the Dialog processor in disp+work.exe 7010.29.15.58313 and 7200... High Unreviewed

CVE-2012-2611 was published May 17, 2022

Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 do not... High Unreviewed

CVE-2012-4358 was published May 17, 2022

The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate... Moderate Unreviewed

CVE-2011-4883 was published May 17, 2022

Bytemark Symbiosis before Revision 1322 does not properly validate passwords, which allows remote... Moderate Unreviewed

CVE-2012-2368 was published May 17, 2022

The HTTP client in Cisco IOS 12.4 and 15.0 allows user-assisted remote attackers to cause a... Moderate Unreviewed

CVE-2011-2586 was published May 17, 2022

Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates... Moderate Unreviewed

CVE-2011-4231 was published May 17, 2022

Safari in Apple iOS before 5.1.1 allows remote attackers to spoof the location bar's URL via a... Moderate Unreviewed

CVE-2012-0674 was published May 17, 2022

Cisco IOS 15.0 and 15.1 and IOS XE 3.x do not properly handle the "set mpls experimental... Moderate Unreviewed

CVE-2011-4007 was published May 17, 2022

Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before... Moderate Unreviewed

CVE-2012-3003 was published May 17, 2022

The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether... High Unreviewed

CVE-2010-5185 was published May 17, 2022

The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0... Moderate Unreviewed

CVE-2012-2495 was published May 17, 2022

Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly validate the... High Unreviewed

CVE-2011-1130 was published May 17, 2022

Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 do not... High Unreviewed

CVE-2012-4359 was published May 17, 2022

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows... Moderate Unreviewed

CVE-2012-3689 was published May 17, 2022

The client in Schneider Electric Software Update (SESU) Utility 1.0.x and 1.1.x does not ensure... High Unreviewed

CVE-2013-0655 was published May 17, 2022

Open redirect vulnerability in index.php in ocPortal before 7.1.6 allows remote attackers to... Moderate Unreviewed

CVE-2012-5234 was published May 17, 2022

JBoss RichFaces Improper Input Validation vulnerability Moderate

CVE-2014-0086 was published for org.richfaces:richfaces (Maven) May 17, 2022

Open redirect vulnerability in servlet/traveler in IBM Lotus Notes Traveler 8.5.3 before 8.5.3.3... Moderate Unreviewed

CVE-2012-4824 was published May 17, 2022

The PayPal module in PrestaShop does not verify that the server hostname matches a domain name in... Moderate Unreviewed

CVE-2012-5801 was published May 17, 2022

The NETIO and IPV4_IO processes in Cisco IOS XR 3.8 through 4.1, as used in Cisco Carrier Routing... High Unreviewed

CVE-2011-3295 was published May 17, 2022

Open Source Competency Center (OSCC) MyMeeting 3.0.1 and earlier, and MyMesyuarat 09b-1, does not... Moderate Unreviewed

CVE-2012-3572 was published May 17, 2022

Cisco Unified Communications Manager (CUCM) 8.6 before 8.6(2a)su2, 8.6 BE3k before 8.6(4) BE3k,... High Unreviewed

CVE-2013-1133 was published May 17, 2022

The LinkPoint module in Zen Cart does not verify that the server hostname matches a domain name... Moderate Unreviewed

CVE-2012-5808 was published May 17, 2022

The Ubercart SecureTrading Payment Method module 6.x for Drupal does not properly verify payment... Moderate Unreviewed

CVE-2012-4482 was published May 17, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,575 advisories