GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
240,683 advisories
Filter by severity
Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System...
Moderate
Unreviewed
CVE-2008-6192
was published
May 17, 2022
Directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla! allows...
Moderate
Unreviewed
CVE-2010-1494
was published
May 17, 2022
SQL injection vulnerability in the AWDwall (com_awdwall) component before 1.5.5 for Joomla!...
High
Unreviewed
CVE-2010-1493
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Meridio Document and Records Management before 4.3...
Low
Unreviewed
CVE-2008-7231
was published
May 17, 2022
Multiple SQL injection vulnerabilities in isearch.php in NCT Jobs Portal Script allow remote...
High
Unreviewed
CVE-2010-1605
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in admin/postlister/index.php in Jetbox CMS 2.1 allows...
Moderate
Unreviewed
CVE-2008-6174
was published
May 17, 2022
Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) before 3...
High
Unreviewed
CVE-2008-6158
was published
May 17, 2022
Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Avaya one-X...
Moderate
Unreviewed
CVE-2008-6140
was published
May 17, 2022
Session fixation vulnerability in moziloWiki 1.0.1 and earlier allows remote attackers to hijack...
Moderate
Unreviewed
CVE-2008-6131
was published
May 17, 2022
Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability....
High
Unreviewed
CVE-2017-11278
was published
May 17, 2022
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows...
High
Unreviewed
CVE-2010-1531
was published
May 17, 2022
SQL injection vulnerability in genre_artists.php in MusicBox 3.3 allows remote attackers to...
High
Unreviewed
CVE-2010-1499
was published
May 17, 2022
A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for...
Moderate
Unreviewed
CVE-2021-1567
was published
May 24, 2022
In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, the lack of capability...
Moderate
Unreviewed
CVE-2021-24355
was published
May 24, 2022
An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices....
High
Unreviewed
CVE-2021-40380
was published
May 24, 2022
In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper...
Low
Unreviewed
CVE-2020-0368
was published
May 24, 2022
Philips Hue is vulnerable to a Denial of Service attack. Sending a SYN flood on port tcp/80 will...
High
Unreviewed
CVE-2018-7580
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the PSD Header processing functionality of...
High
Unreviewed
CVE-2020-13585
was published
May 24, 2022
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi...
Moderate
Unreviewed
CVE-2020-12262
was published
May 24, 2022
Askey AP5100W_Dual_SIG_1.01.097 and all prior versions use a weak password at the Operating...
Critical
Unreviewed
CVE-2020-26201
was published
May 24, 2022
In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, a lack of capability...
High
Unreviewed
CVE-2021-24356
was published
May 24, 2022
Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and...
High
Unreviewed
CVE-2021-3115
was published
May 24, 2022
An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the...
High
Unreviewed
CVE-2020-13987
was published
May 24, 2022
In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked list corruption due to an...
High
Unreviewed
CVE-2020-0404
was published
May 24, 2022
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when...
High
Unreviewed
CVE-2021-21013
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API