GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,143
Composer 4,083
Erlang 29
GitHub Actions 19
Go 1,909
Maven 5,108
npm 3,644
NuGet 638
pip 3,260
Pub 10
RubyGems 869
Rust 820
Swift 35

Unreviewed advisories

All unreviewed 229,072

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

23,063 advisories

Filter by severity

Sort by

Least recently updated

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects... Critical Unreviewed

CVE-2021-45527 was published Dec 27, 2021

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite... Critical Unreviewed

CVE-2016-3556 was published May 17, 2022

Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization... Critical Unreviewed

CVE-2016-3613 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-4215 was published May 17, 2022

Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1. Critical Unreviewed

CVE-2013-7426 was published May 17, 2022

QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause... Critical Unreviewed

CVE-2016-4598 was published May 17, 2022

A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an... Critical Unreviewed

CVE-2021-44529 was published Dec 9, 2021

The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the... Critical Unreviewed

CVE-2016-10176 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-4206 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-4203 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-4208 was published May 17, 2022

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl... Critical Unreviewed

CVE-2016-5228 was published May 17, 2022

Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be... Critical Unreviewed

CVE-2016-9796 was published May 17, 2022

__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through... Critical Unreviewed

CVE-2016-5674 was published May 17, 2022

PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM... Critical Unreviewed

CVE-2016-8580 was published May 17, 2022

handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0... Critical Unreviewed

CVE-2016-5675 was published May 17, 2022

Hard coded weak credentials in Barracuda Load Balancer 5.0.0.015. Critical Unreviewed

CVE-2014-8426 was published May 17, 2022

The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of... Critical Unreviewed

CVE-2021-39990 was published Jan 4, 2022

mruby is vulnerable to Heap-based Buffer Overflow Critical Unreviewed

CVE-2022-0080 was published Jan 3, 2022

Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows... Critical Unreviewed

CVE-2015-7700 was published May 17, 2022

SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an... Critical Unreviewed

CVE-2017-14076 was published May 17, 2022

The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of header packet type check. Critical Unreviewed

CVE-2013-0870 was published May 17, 2022

Versions of MCollective prior to 2.10.4 deserialized YAML from agents without calling safe_load,... Critical Unreviewed

CVE-2017-2292 was published May 17, 2022

Froxlor before 0.9.33.2 with the default configuration/setup might allow remote attackers to... Critical Unreviewed

CVE-2015-5959 was published May 17, 2022

A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee... Critical Unreviewed

CVE-2017-3897 was published May 17, 2022

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,063 advisories