GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,659

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

158,245 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6460 was published May 17, 2022

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7... Moderate Unreviewed

CVE-2014-6522 was published May 17, 2022

RT (aka Request Tracker) 3.8.8 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote... Moderate Unreviewed

CVE-2015-1165 was published May 17, 2022

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10... Moderate Unreviewed

CVE-2014-6499 was published May 17, 2022

The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows... Moderate Unreviewed

CVE-2011-2221 was published May 17, 2022

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote... Moderate Unreviewed

CVE-2015-7900 was published May 17, 2022

EPSON Network Utility 4.10 uses weak permissions (Everyone: Full Control) for eEBSVC.exe, which... Moderate Unreviewed

CVE-2015-6034 was published May 17, 2022

SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x... Moderate Unreviewed

CVE-2015-5659 was published May 17, 2022

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA... Moderate Unreviewed

CVE-2014-2732 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability on Janitza UMG 508, 509, 511, 604, and 605... Moderate Unreviewed

CVE-2015-3967 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for... Moderate Unreviewed

CVE-2014-8671 was published May 17, 2022

IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 does not set the secure... Moderate Unreviewed

CVE-2015-2025 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in HP Smart Profile Server Data Analytics... Moderate Unreviewed

CVE-2015-5444 was published May 17, 2022

The CPU Software in Apple OS X before 10.10.2 allows physically proximate attackers to modify... Moderate Unreviewed

CVE-2014-4498 was published May 17, 2022

Session fixation vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1... Moderate Unreviewed

CVE-2015-2029 was published May 17, 2022

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1... Moderate Unreviewed

CVE-2015-0143 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2... Moderate Unreviewed

CVE-2015-0145 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Dotclear before 2.8.1 allows remote attackers to... Moderate Unreviewed

CVE-2015-5651 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the administration portal in Cisco WebEx Meetings... Moderate Unreviewed

CVE-2015-0668 was published May 17, 2022

X.org libFS 1.0.4 and earlier allows X servers to trigger allocation of insufficient memory and a... Moderate Unreviewed

CVE-2013-1996 was published May 17, 2022

IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 has an improper account... Moderate Unreviewed

CVE-2015-2030 was published May 17, 2022

IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 FP009, and 7.6.0 before 7... Moderate Unreviewed

CVE-2015-4966 was published May 17, 2022

IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator 5.2 before 5020500_9... Moderate Unreviewed

CVE-2015-5019 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Kentico CMS 8.2 allow remote attackers to... Moderate Unreviewed

CVE-2015-7822 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Moderate Unreviewed

CVE-2014-6539 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

158,245 advisories