GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,385

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

117,411 advisories

Filter by severity

Sort by

Least recently updated

The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to... Moderate Unreviewed

CVE-2016-3810 was published May 17, 2022

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated... Moderate Unreviewed

CVE-2016-5092 was published May 17, 2022

The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4... Moderate Unreviewed

CVE-2016-5243 was published May 17, 2022

The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus... Moderate Unreviewed

CVE-2016-6684 was published May 17, 2022

Cisco Unified Communications Manager 11.5(0.98000.480) allows remote authenticated users to... Moderate Unreviewed

CVE-2016-1317 was published May 17, 2022

WebSheet in Apple iOS before 9.2.1 allows remote attackers to read or write to cookies by... Moderate Unreviewed

CVE-2016-1730 was published May 17, 2022

Cisco Small Business 500 Wireless Access Point devices with firmware 1.0.4.4 allow remote... Moderate Unreviewed

CVE-2016-1334 was published May 17, 2022

Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction... Moderate Unreviewed

CVE-2016-1316 was published May 17, 2022

The NVIDIA profiler in Android before 2016-10-05 on Nexus 9 devices allows attackers to obtain... Moderate Unreviewed

CVE-2016-6687 was published May 17, 2022

An elevation of privilege vulnerability in the Account Manager Service in Android 7.0 before 2016... Moderate Unreviewed

CVE-2016-6718 was published May 17, 2022

A vulnerability in the self-healing functionality of Cisco IOS XE Software for Embedded Wireless... Moderate Unreviewed

CVE-2022-20855 was published Oct 1, 2022

An issue was discovered in Veritas NetBackup through 10.0.0.1 and related Veritas products. The... Moderate Unreviewed

CVE-2022-42300 was published Oct 4, 2022

Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed... Moderate Unreviewed

CVE-2022-41427 was published Oct 4, 2022

The Donation Thermometer WordPress plugin before 2.1.3 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2022-3128 was published Oct 4, 2022

The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does... Moderate Unreviewed

CVE-2016-4482 was published May 17, 2022

nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component Moderate Unreviewed

CVE-2022-41420 was published Oct 4, 2022

Heap-based buffer overflow in Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users... Moderate Unreviewed

CVE-2016-4499 was published May 17, 2022

The DSA algorithm implementation in SAP SAPCRYPTOLIB 5.555.38 does not properly check signatures,... Moderate Unreviewed

CVE-2016-4407 was published May 17, 2022

Panasonic FPWIN Pro 5.x through 7.x before 7.130 accesses an uninitialized pointer, which allows... Moderate Unreviewed

CVE-2016-4498 was published May 17, 2022

SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote... Moderate Unreviewed

CVE-2016-1308 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 11.5(0.199) allows remote... Moderate Unreviewed

CVE-2016-1310 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meetings Server 2.5.1.5 allow... Moderate Unreviewed

CVE-2016-1309 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Cisco Application Policy Infrastructure Controller... Moderate Unreviewed

CVE-2016-1305 was published May 17, 2022

An information disclosure vulnerability in Qualcomm components including the GPU driver, power... Moderate Unreviewed

CVE-2016-3906 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Huawei Policy Center before V100R003C10SPC020 allows... Moderate Unreviewed

CVE-2016-4058 was published May 17, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117,411 advisories