Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,269 advisories

Loading
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and... Moderate Unreviewed
CVE-2016-5606 was published May 17, 2022
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial... High Unreviewed
CVE-2016-5619 was published May 17, 2022
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial... High Unreviewed
CVE-2016-5622 was published May 17, 2022
Unspecified vulnerability in the Oracle Platform Security for Java component in Oracle Fusion... High Unreviewed
CVE-2016-8281 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft... Moderate Unreviewed
CVE-2016-8285 was published May 17, 2022
Siemens Automation License Manager (ALM) before 5.3 SP3 allows remote attackers to write to files... Critical Unreviewed
CVE-2016-8565 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... High Unreviewed
CVE-2016-8293 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... High Unreviewed
CVE-2016-8296 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft... Moderate Unreviewed
CVE-2016-8292 was published May 17, 2022
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... High Unreviewed
CVE-2016-8291 was published May 17, 2022
The Apache HTTP Server in Apple OS X before 10.12 and OS X Server before 5.2 follows RFC 3875... Critical Unreviewed
CVE-2016-4694 was published May 17, 2022
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows... Moderate Unreviewed
CVE-2016-4760 was published May 17, 2022
The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the accessibility... High Unreviewed
CVE-2016-5273 was published May 17, 2022
Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Policy via a... High Unreviewed
CVE-2016-5283 was published May 17, 2022
Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed
CVE-2016-6958 was published May 17, 2022
Drupal Node Validation Bypass in the node module API High
CVE-2008-4793 was published for drupal/drupal (Composer) May 17, 2022
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted... High Unreviewed
CVE-2014-9830 was published May 17, 2022
coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted... High Unreviewed
CVE-2014-9831 was published May 17, 2022
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd... High Unreviewed
CVE-2014-9828 was published May 17, 2022
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm... High Unreviewed
CVE-2014-9827 was published May 17, 2022
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups. High Unreviewed
CVE-2015-7887 was published May 17, 2022
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in... High Unreviewed
CVE-2016-3863 was published May 17, 2022
arm-wt-22k/lib_src/eas_mdls.c in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1... High Unreviewed
CVE-2016-3879 was published May 17, 2022
decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-09-01 mishandles the case of... High Unreviewed
CVE-2016-3878 was published May 17, 2022
Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed
CVE-2016-3880 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database