GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,549
Composer 6,122
Erlang 86
GitHub Actions 54
Go 4,175
Maven 6,713
npm 6,687
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,878

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

162,123 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Scheduler in IBM Maximo Asset Management 7.5 before 7.5.0.8 IF6 and 7.6 before 7.6.0.1 FP1... Moderate Unreviewed

CVE-2015-7396 was published May 17, 2022

IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.6 includes SSH... Moderate Unreviewed

CVE-2015-2008 was published May 17, 2022

IBM Spectrum Scale 4.1.1 before 4.1.1.4, and 4.2.0.0, allows remote authenticated users to... Moderate Unreviewed

CVE-2015-7456 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote... Moderate Unreviewed

CVE-2015-7798 was published May 17, 2022

Zenoss Core through 5 Beta 3 uses a weak algorithm to hash passwords, which makes it easier for... Moderate Unreviewed

CVE-2014-9251 was published May 17, 2022

The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sensitive... Moderate Unreviewed

CVE-2016-1323 was published May 17, 2022

Wiki Server in Apple OS X Server before 4.1 allows remote attackers to bypass intended... Moderate Unreviewed

CVE-2015-1151 was published May 17, 2022

IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 and 7.2.x before 7.2.5 Patch 6 does not... Moderate Unreviewed

CVE-2015-2005 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Novell Filr 1.2 before Hot Patch 4 allows remote... Moderate Unreviewed

CVE-2015-5968 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the GDS component in IBM InfoSphere Master Data... Moderate Unreviewed

CVE-2015-7414 was published May 17, 2022

IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment... Moderate Unreviewed

CVE-2016-0232 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Field Group module 7.x-1.x before 7.x-1.5 for... Moderate Unreviewed

CVE-2016-1565 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on... Moderate Unreviewed

CVE-2016-1488 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the internationalization feature in the default... Moderate Unreviewed

CVE-2015-8510 was published May 17, 2022

The lockscreen feature in Mozilla Firefox OS before 2.5 does not properly restrict failed... Moderate Unreviewed

CVE-2015-8512 was published May 17, 2022

Race condition in the lockscreen feature in Mozilla Firefox OS before 2.5 allows physically... Moderate Unreviewed

CVE-2015-8511 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Reference Data Management (RDM) in IBM InfoSphere... Moderate Unreviewed

CVE-2015-7492 was published May 17, 2022

Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service (JRS) 6.0 before 6.0.0-Rational-CLM... Moderate Unreviewed

CVE-2015-7466 was published May 17, 2022

Huawei TE30, TE40, TE50, and TE60 multimedia video conferencing endpoints with software before... Moderate Unreviewed

CVE-2015-8673 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote... Moderate Unreviewed

CVE-2016-2287 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in the Redhen module 7.x-1.x before 7.x-1.11... Moderate Unreviewed

CVE-2016-1913 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Let's PHP! Frame high-speed chat before 2015-09-22... Moderate Unreviewed

CVE-2015-7782 was published May 17, 2022

The MOVEitISAPI service in Ipswitch MOVEit DMZ before 8.2 provides different error messages... Moderate Unreviewed

CVE-2015-7677 was published May 17, 2022

The Chat Room module 7.x-2.x before 7.x-2.2 for Drupal does not properly check permissions when... Moderate Unreviewed

CVE-2015-8601 was published May 17, 2022

The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1... Moderate Unreviewed

CVE-2016-1715 was published May 17, 2022

Previous 1…389…400 Next

Previous 1 2 … 387 388 389 390 391 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

162,123 advisories