GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,665

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

125,465 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301... High Unreviewed

CVE-2013-3483 was published May 17, 2022

WebYaST 1.3 uses weak permissions for config/initializers/secret_token.rb, which allows local... High Unreviewed

CVE-2013-3709 was published May 17, 2022

The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before... High Unreviewed

CVE-2014-0704 was published May 17, 2022

The peerAddresses API in the Belkin WeMo Home Automation firmware before 3949 allows remote... High Unreviewed

CVE-2013-6948 was published May 17, 2022

Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 allows remote Zabbix... High Unreviewed

CVE-2013-6824 was published May 17, 2022

The IOSerialFamily driver in Apple iOS before 7 allows attackers to execute arbitrary code or... High Unreviewed

CVE-2013-5139 was published May 17, 2022

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1,... High Unreviewed

CVE-2013-2827 was published May 17, 2022

Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1... High Unreviewed

CVE-2013-2824 was published May 17, 2022

Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote... High Unreviewed

CVE-2014-1243 was published May 17, 2022

Cisco Wireless LAN Controller (WLC) devices 7.2 before 7.2.115.2, 7.3, and 7.4 before 7.4.110.0... High Unreviewed

CVE-2014-0706 was published May 17, 2022

Buffer overflow in Apple Type Services (ATS) in Apple OS X before 10.9.2 allows attackers to... High Unreviewed

CVE-2014-1256 was published May 17, 2022

Unspecified vulnerability in the Web manager implementation on D-Link Japan DES-3800 devices with... High Unreviewed

CVE-2013-5998 was published May 17, 2022

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows... High Unreviewed

CVE-2013-2817 was published May 17, 2022

PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to modify the flow... High Unreviewed

CVE-2014-2868 was published May 17, 2022

PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to bypass intended... High Unreviewed

CVE-2014-2859 was published May 17, 2022

SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0... High Unreviewed

CVE-2013-7139 was published May 17, 2022

Race condition in the libreswan.spec files for Red Hat Enterprise Linux (RHEL) and Fedora... High Unreviewed

CVE-2013-7283 was published May 17, 2022

The OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to... High Unreviewed

CVE-2014-1475 was published May 17, 2022

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00(BFQ.6)C0 allows remote... High Unreviewed

CVE-2014-0356 was published May 17, 2022

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0... High Unreviewed

CVE-2014-2406 was published May 17, 2022

PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 relies on client JavaScript code for... High Unreviewed

CVE-2014-2866 was published May 17, 2022

The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, J8###A, JD3##A, JE###A, and JF55... High Unreviewed

CVE-2013-4806 was published May 17, 2022

TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly... High Unreviewed

CVE-2014-2075 was published May 17, 2022

NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10... High Unreviewed

CVE-2013-2821 was published May 17, 2022

Cooper Power Systems Cybectec DNP3 Master OPC Server allows remote attackers to cause a denial of... High Unreviewed

CVE-2013-2814 was published May 17, 2022

Previous 1…395…400 Next

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

125,465 advisories