GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,859

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,664 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM BigFix Remote Control 9.1.3 could allow a remote attacker to perform actions reserved for an... High Unreviewed

CVE-2016-2930 was published May 17, 2022

IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST... Moderate Unreviewed

CVE-2016-0320 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8311 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8300 was published May 17, 2022

A vulnerability has been identified in IBM Cloud Orchestrator services/[action]/launch API. An... Low Unreviewed

CVE-2015-7494 was published May 17, 2022

The default configuration for Cougar-LG stores sensitive information under the web root with... High Unreviewed

CVE-2014-3929 was published May 17, 2022

IBM Tivoli Storage Productivity Center could allow an authenticated user with intimate knowledge... Low Unreviewed

CVE-2016-8942 was published May 17, 2022

IBM UrbanCode Deploy could allow a user to execute code using a specially crafted file upload... Critical Unreviewed

CVE-2016-8938 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8309 was published May 17, 2022

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed

CVE-2016-8299 was published May 17, 2022

An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to... Moderate Unreviewed

CVE-2016-10223 was published May 17, 2022

Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization. High Unreviewed

CVE-2016-6605 was published May 17, 2022

dlp_policy_upload.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows... High Unreviewed

CVE-2016-8587 was published May 17, 2022

SAP HANA DB 1.00.73.00.389160 allows remote attackers to execute arbitrary code via vectors... Critical Unreviewed

CVE-2016-6143 was published May 17, 2022

The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier... Moderate Unreviewed

CVE-2016-1178 was published May 17, 2022

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS... High Unreviewed

CVE-2016-6258 was published May 17, 2022

Mozilla Firefox before 46.0 allows remote attackers to bypass the Content Security Policy (CSP)... Moderate Unreviewed

CVE-2016-2816 was published May 17, 2022

The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5... High Unreviewed

CVE-2016-7048 was published May 14, 2022

IBM WebSphere MQ 9.0.0.1 and 9.0.2 could allow a local user to write to a file or delete files in... Moderate Unreviewed

CVE-2016-6089 was published May 17, 2022

The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via... High Unreviewed

CVE-2016-7408 was published May 17, 2022

FreeIPA 4.4.0 allows remote attackers to request an arbitrary SAN name for services. High Unreviewed

CVE-2016-5414 was published May 17, 2022

IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 specifies permissions for a security... High Unreviewed

CVE-2016-6098 was published May 17, 2022

Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed

CVE-2016-4908 was published May 17, 2022

Reset to default settings may occur in Lenovo ThinkServer TSM RD350, RD450, RD550, RD650, TD350... High Unreviewed

CVE-2016-8236 was published May 17, 2022

Authorization Bypass in the Web interface of Arcadyan SLT-00 Star* (aka Swisscom Internet-Box)... High Unreviewed

CVE-2016-10042 was published May 17, 2022

Previous 1…139…147 Next

Previous 1 2 … 137 138 139 140 141 … 146 147 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,664 advisories