GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,659

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

158,245 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during... Moderate Unreviewed

CVE-2014-1372 was published May 17, 2022

Techno Project Japan Enisys Gw before 1.4.1 allows remote attackers to bypass intended access... Moderate Unreviewed

CVE-2015-5671 was published May 17, 2022

mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to... Moderate Unreviewed

CVE-2015-7718 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10... Moderate Unreviewed

CVE-2014-2712 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the web framework in Cisco Content Security... Moderate Unreviewed

CVE-2013-3396 was published May 17, 2022

Directory traversal vulnerability in the command-line interface in Cisco NX-OS 6.2(2a) and... Moderate Unreviewed

CVE-2013-6975 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and... Moderate Unreviewed

CVE-2015-6493 was published May 17, 2022

The web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000... Moderate Unreviewed

CVE-2015-6374 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower... Moderate Unreviewed

CVE-2015-6372 was published May 17, 2022

SQL injection vulnerability in list.php in phpRechnung before 1.6.5 allows remote authenticated... Moderate Unreviewed

CVE-2015-5648 was published May 17, 2022

The SAND STUDIO AirDroid application 1.1.0 and earlier for Android mishandles implicit intents,... Moderate Unreviewed

CVE-2015-5661 was published May 17, 2022

mediaserver in Android before 5.1.1 LMY48X allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2015-8074 was published May 17, 2022

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory... Moderate Unreviewed

CVE-2014-5213 was published May 17, 2022

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... Moderate Unreviewed

CVE-2014-4295 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite... Moderate Unreviewed

CVE-2014-6471 was published May 17, 2022

Unspecified vulnerability in the Application Express component in Oracle Database Server before 4... Moderate Unreviewed

CVE-2014-6483 was published May 17, 2022

RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack... Moderate Unreviewed

CVE-2015-1464 was published May 17, 2022

The SNMPv2 implementation in Cisco IOS XR allows remote authenticated users to cause a denial of... Moderate Unreviewed

CVE-2015-0661 was published May 17, 2022

Multiple buffer overflows in SAP 3D Visual Enterprise Viewer (VEV) allow remote attackers to... Moderate Unreviewed

CVE-2015-8028 was published May 17, 2022

The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X before 10.11.1 allows local... Moderate Unreviewed

CVE-2015-7020 was published May 17, 2022

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6535 was published May 17, 2022

Apple Type Services (ATS) in Apple OS X before 10.11.1 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-6985 was published May 17, 2022

Audio in Apple OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a... Moderate Unreviewed

CVE-2015-5933 was published May 17, 2022

The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote... Moderate Unreviewed

CVE-2015-7991 was published May 17, 2022

The Dubstep Hero (aka com.electricpunch.dubstephero) application 1.9 for Android does not verify... Moderate Unreviewed

CVE-2014-5848 was published May 17, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

158,245 advisories