GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,892
Composer 5,066
Erlang 39
GitHub Actions 38
Go 2,704
Maven 6,140
npm 4,328
NuGet 761
pip 4,103
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

144,470 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The SAND STUDIO AirDroid application 1.1.0 and earlier for Android mishandles implicit intents,... Moderate Unreviewed

CVE-2015-5661 was published May 17, 2022

Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003... Moderate Unreviewed

CVE-2015-6491 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and... Moderate Unreviewed

CVE-2015-6493 was published May 17, 2022

The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote... Moderate Unreviewed

CVE-2015-7991 was published May 17, 2022

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory... Moderate Unreviewed

CVE-2014-5213 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite... Moderate Unreviewed

CVE-2014-6471 was published May 17, 2022

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6535 was published May 17, 2022

The SNMPv2 implementation in Cisco IOS XR allows remote authenticated users to cause a denial of... Moderate Unreviewed

CVE-2015-0661 was published May 17, 2022

The Breezy application for Android does not verify that the server hostname matches a domain name... Moderate Unreviewed

CVE-2012-5811 was published May 17, 2022

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file... Moderate Unreviewed

CVE-2015-8003 was published May 17, 2022

Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host... Moderate Unreviewed

CVE-2011-1166 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in 4images 1.7.11 and earlier allows remote attackers to... Moderate Unreviewed

CVE-2015-7708 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2)... Moderate Unreviewed

CVE-2014-4743 was published May 17, 2022

Audio in Apple OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a... Moderate Unreviewed

CVE-2015-5933 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM Multi-Enterprise Integration Gateway 1.x through... Moderate Unreviewed

CVE-2015-4973 was published May 17, 2022

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1... Moderate Unreviewed

CVE-2015-0987 was published May 17, 2022

Apple Type Services (ATS) in Apple OS X before 10.11.1 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-6985 was published May 17, 2022

The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X before 10.11.1 allows local... Moderate Unreviewed

CVE-2015-7020 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in wlsecurity.html on NetCommWireless NB604N routers... Moderate Unreviewed

CVE-2014-4871 was published May 17, 2022

Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11... Moderate Unreviewed

CVE-2014-8555 was published May 17, 2022

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service ... Moderate Unreviewed

CVE-2014-1253 was published May 17, 2022

The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which... Moderate Unreviewed

CVE-2015-5643 was published May 17, 2022

SAP 3D Visual Enterprise Viewer (VEV) allows remote attackers to execute arbitrary code via a... Moderate Unreviewed

CVE-2015-8029 was published May 17, 2022

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... Moderate Unreviewed

CVE-2014-4295 was published May 17, 2022

Unspecified vulnerability in the Application Express component in Oracle Database Server before 4... Moderate Unreviewed

CVE-2014-6483 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

144,470 advisories