GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113,773 advisories
Filter by severity
Cross-site scripting (XSS) vulnerability in D-link IP camera DCS-2103 with firmware before 1.20...
Moderate
Unreviewed
CVE-2014-9517
was published
May 17, 2022
PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which allows remote attackers...
Moderate
Unreviewed
CVE-2014-8601
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Trend Micro InterScan Messaging Security Virtual...
Moderate
Unreviewed
CVE-2014-3922
was published
May 17, 2022
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7...
Moderate
Unreviewed
CVE-2014-0159
was published
May 17, 2022
The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt option, only enables...
Moderate
Unreviewed
CVE-2013-4135
was published
May 17, 2022
HPE Insight Control server deployment allows remote attackers to modify data via unspecified...
Moderate
Unreviewed
CVE-2016-4363
was published
May 17, 2022
The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain...
Moderate
Unreviewed
CVE-2014-3277
was published
May 17, 2022
The Java-based software in Cisco Hosted Collaboration Solution (HCS) allows remote attackers to...
Moderate
Unreviewed
CVE-2014-2121
was published
May 17, 2022
EMC PowerPath Virtual Appliance (aka vApp) before 2.0 has default passwords for the (1) emcupdate...
Moderate
Unreviewed
CVE-2015-0529
was published
May 17, 2022
Symantec Backup Exec 11.0, 12.0, 12.5, 13.0, and 13.0 R2 does not validate identity information...
Moderate
Unreviewed
CVE-2011-0546
was published
May 17, 2022
Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11...
Moderate
Unreviewed
CVE-2015-4832
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in forgot.php in AudioShare 2.0.2 allows remote...
Moderate
Unreviewed
CVE-2015-4725
was published
May 17, 2022
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware...
Moderate
Unreviewed
CVE-2015-4880
was published
May 17, 2022
SQL injection vulnerability in ticket.php in TickFa 1.x allows remote authenticated users to...
Moderate
Unreviewed
CVE-2015-4676
was published
May 17, 2022
IBM WebSphere MQ Light 1.x before 1.0.2 mishandles abbreviated TLS handshakes, which allows...
Moderate
Unreviewed
CVE-2015-4941
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.2...
Moderate
Unreviewed
CVE-2015-4959
was published
May 17, 2022
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1...
Moderate
Unreviewed
CVE-2015-4912
was published
May 17, 2022
IBM WebSphere MQ Light 1.x before 1.0.2 allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2015-4943
was published
May 17, 2022
Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4...
Moderate
Unreviewed
CVE-2015-4925
was published
May 17, 2022
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4...
Moderate
Unreviewed
CVE-2015-4909
was published
May 17, 2022
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4...
Moderate
Unreviewed
CVE-2015-4838
was published
May 17, 2022
An information disclosure vulnerability in Qualcomm components including the GPU driver, power...
Moderate
Unreviewed
CVE-2016-6749
was published
May 17, 2022
An information disclosure vulnerability in the NVIDIA GPU driver in Android before 2016-11-05...
Moderate
Unreviewed
CVE-2016-6746
was published
May 17, 2022
The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly...
Moderate
Unreviewed
CVE-2011-4576
was published
May 17, 2022
The Reader View implementation in Mozilla Firefox before 42.0 has an improper whitelist, which...
Moderate
Unreviewed
CVE-2015-4518
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API