GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113,773 advisories
Filter by severity
The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS...
Moderate
Unreviewed
CVE-2012-4095
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird...
Moderate
Unreviewed
CVE-2014-2018
was published
May 17, 2022
Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000...
Moderate
Unreviewed
CVE-2016-7179
was published
May 17, 2022
Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers...
Moderate
Unreviewed
CVE-2013-5532
was published
May 17, 2022
Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create...
Moderate
Unreviewed
CVE-2012-4141
was published
May 17, 2022
The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a...
Moderate
Unreviewed
CVE-2012-4093
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17...
Moderate
Unreviewed
CVE-2016-0927
was published
May 17, 2022
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified...
Moderate
Unreviewed
CVE-2012-4074
was published
May 17, 2022
Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200,...
Moderate
Unreviewed
CVE-2016-6901
was published
May 17, 2022
The high-availability service in the Fabric Interconnect component in Cisco Unified Computing...
Moderate
Unreviewed
CVE-2012-4136
was published
May 17, 2022
Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through...
Moderate
Unreviewed
CVE-2015-6551
was published
May 17, 2022
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking...
Moderate
Unreviewed
CVE-2016-0895
was published
May 17, 2022
IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 allows remote authenticated...
Moderate
Unreviewed
CVE-2016-2957
was published
May 17, 2022
IBM Cognos TM1 10.2.2 before FP5, when the host/pmhub/pm/admin AdminGroups setting is empty,...
Moderate
Unreviewed
CVE-2016-0381
was published
May 17, 2022
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a...
Moderate
Unreviewed
CVE-2015-8838
was published
May 17, 2022
Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it...
Moderate
Unreviewed
CVE-2015-6434
was published
May 17, 2022
Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of service (device reload) via a...
Moderate
Unreviewed
CVE-2015-6431
was published
May 17, 2022
The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0...
Moderate
Unreviewed
CVE-2015-6425
was published
May 17, 2022
The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications...
Moderate
Unreviewed
CVE-2015-6410
was published
May 17, 2022
Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 allows remote authenticated...
Moderate
Unreviewed
CVE-2015-6413
was published
May 17, 2022
Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs supersede virtual PPP interface...
Moderate
Unreviewed
CVE-2015-6365
was published
May 17, 2022
Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls...
Moderate
Unreviewed
CVE-2015-6478
was published
May 17, 2022
The management interface in the Central Software component in Cisco Unified Computing System (UCS...
Moderate
Unreviewed
CVE-2012-4092
was published
May 17, 2022
The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an...
Moderate
Unreviewed
CVE-2012-4088
was published
May 17, 2022
CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to...
Moderate
Unreviewed
CVE-2016-6839
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API