Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

950 advisories

Loading
In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed... Moderate Unreviewed
CVE-2015-9024 was published May 17, 2022
An authenticated user with admin privileges may be able to terminate any process on the system... Moderate Unreviewed
CVE-2022-2088 was published Jun 28, 2022
In all Android releases from CAF using the Linux kernel, libtomcrypt was updated. Moderate Unreviewed
CVE-2016-10335 was published May 17, 2022
Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to bypass access restrictions to delete... Moderate Unreviewed
CVE-2016-7801 was published May 17, 2022
Samsung Gallery on the Samsung Galaxy S6 allows local users to cause a denial of service (process... Moderate Unreviewed
CVE-2015-7895 was published May 17, 2022
The MessageStatusReceiver service in the AndroidManifest.XML in Android 5.1.1 and earlier allows... Moderate Unreviewed
CVE-2015-3840 was published May 17, 2022
LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to write to arbitrary... Moderate Unreviewed
CVE-2015-8275 was published May 17, 2022
Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content... Moderate Unreviewed
CVE-2016-9460 was published May 17, 2022
markdown-it before 4.1.0 does not block data: URLs. Moderate Unreviewed
CVE-2015-3295 was published May 17, 2022
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2016-4910 was published May 17, 2022
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed
CVE-2016-4032 was published May 17, 2022
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed
CVE-2016-4030 was published May 17, 2022
MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote... Moderate Unreviewed
CVE-2016-6336 was published May 17, 2022
stalin 0.11-5 allows local users to write to arbitrary files. Moderate Unreviewed
CVE-2015-8697 was published May 17, 2022
Samsung Gallery in the Samsung Galaxy S6 allows local users to cause a denial of service (process... Moderate Unreviewed
CVE-2015-7898 was published May 17, 2022
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2016-4908 was published May 17, 2022
IBM WebSphere MQ 9.0.0.1 and 9.0.2 could allow a local user to write to a file or delete files in... Moderate Unreviewed
CVE-2016-6089 was published May 17, 2022
Mozilla Firefox before 46.0 allows remote attackers to bypass the Content Security Policy (CSP)... Moderate Unreviewed
CVE-2016-2816 was published May 17, 2022
The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier... Moderate Unreviewed
CVE-2016-1178 was published May 17, 2022
An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to... Moderate Unreviewed
CVE-2016-10223 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8309 was published May 17, 2022
IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST... Moderate Unreviewed
CVE-2016-0320 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8311 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8299 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8300 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database