GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
23,063 advisories
Filter by severity
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects...
Critical
Unreviewed
CVE-2021-45527
was published
Dec 27, 2021
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite...
Critical
Unreviewed
CVE-2016-3556
was published
May 17, 2022
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization...
Critical
Unreviewed
CVE-2016-3613
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-4215
was published
May 17, 2022
Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1.
Critical
Unreviewed
CVE-2013-7426
was published
May 17, 2022
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause...
Critical
Unreviewed
CVE-2016-4598
was published
May 17, 2022
A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an...
Critical
Unreviewed
CVE-2021-44529
was published
Dec 9, 2021
The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the...
Critical
Unreviewed
CVE-2016-10176
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-4206
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-4203
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-4208
was published
May 17, 2022
Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl...
Critical
Unreviewed
CVE-2016-5228
was published
May 17, 2022
Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be...
Critical
Unreviewed
CVE-2016-9796
was published
May 17, 2022
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through...
Critical
Unreviewed
CVE-2016-5674
was published
May 17, 2022
PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM...
Critical
Unreviewed
CVE-2016-8580
was published
May 17, 2022
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0...
Critical
Unreviewed
CVE-2016-5675
was published
May 17, 2022
Hard coded weak credentials in Barracuda Load Balancer 5.0.0.015.
Critical
Unreviewed
CVE-2014-8426
was published
May 17, 2022
The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of...
Critical
Unreviewed
CVE-2021-39990
was published
Jan 4, 2022
mruby is vulnerable to Heap-based Buffer Overflow
Critical
Unreviewed
CVE-2022-0080
was published
Jan 3, 2022
Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows...
Critical
Unreviewed
CVE-2015-7700
was published
May 17, 2022
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an...
Critical
Unreviewed
CVE-2017-14076
was published
May 17, 2022
The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of header packet type check.
Critical
Unreviewed
CVE-2013-0870
was published
May 17, 2022
Versions of MCollective prior to 2.10.4 deserialized YAML from agents without calling safe_load,...
Critical
Unreviewed
CVE-2017-2292
was published
May 17, 2022
Froxlor before 0.9.33.2 with the default configuration/setup might allow remote attackers to...
Critical
Unreviewed
CVE-2015-5959
was published
May 17, 2022
A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee...
Critical
Unreviewed
CVE-2017-3897
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API