Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,419 advisories

Loading
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance before... High Unreviewed
CVE-2013-3473 was published May 17, 2022
Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via... High Unreviewed
CVE-2013-3586 was published May 17, 2022
The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not... High Unreviewed
CVE-2012-4614 was published May 17, 2022
Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits... High Unreviewed
CVE-2022-36370 was published Nov 11, 2022
Improper authentication in the Intel(R) SDP Tool before version 3.0.0 may allow an... High Unreviewed
CVE-2022-26508 was published Nov 11, 2022
Improper authentication in some Intel(R) XMM(TM) 7560 Modem software before version M2_7560_R_01... High Unreviewed
CVE-2022-27874 was published Nov 11, 2022
The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with... High Unreviewed
CVE-2013-1150 was published May 17, 2022
Dahua DVR appliances do not properly restrict UPnP requests, which makes it easier for remote... High Unreviewed
CVE-2013-3613 was published May 17, 2022
The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before... High Unreviewed
CVE-2013-1155 was published May 17, 2022
EMC Smarts Network Configuration Manager (NCM) before 9.2 does not require authentication for all... High Unreviewed
CVE-2013-0935 was published May 17, 2022
importbuddy.php in the BackupBuddy plugin 1.3.4, 2.1.4, 2.2.25, 2.2.28, and 2.2.4 for WordPress... High Unreviewed
CVE-2013-2743 was published May 17, 2022
The Location Bandwidth Manager (LBM) Intracluster-communication feature in Cisco Unified... High Unreviewed
CVE-2013-1134 was published May 17, 2022
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5,... High Unreviewed
CVE-2013-1405 was published May 17, 2022
ajax.cgi in the web interface on the Choice Wireless Green Packet WIXFMR-111 4G WiMax modem... High Unreviewed
CVE-2013-4731 was published May 17, 2022
The web-server password-authentication functionality in Rockwell Automation EtherNet/IP products;... High Unreviewed
CVE-2012-6440 was published May 17, 2022
importbuddy.php in the BackupBuddy plugin 1.3.4, 2.1.4, 2.2.25, 2.2.28, and 2.2.4 for WordPress... High Unreviewed
CVE-2013-2741 was published May 17, 2022
Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93,... High Unreviewed
CVE-2022-29893 was published Nov 11, 2022
The Central application in i-GEN opLYNX before 2.01.9 allows remote attackers to bypass... High Unreviewed
CVE-2012-4688 was published May 17, 2022
Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits before version RY0386 may... High Unreviewed
CVE-2022-37345 was published Nov 11, 2022
freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a... High Unreviewed
CVE-2012-6067 was published May 17, 2022
The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2... High Unreviewed
CVE-2012-1799 was published May 17, 2022
The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances ... High Unreviewed
CVE-2012-4659 was published May 17, 2022
The web interface on (1) Foscam and (2) Wansview IP cameras allows remote attackers to bypass... High Unreviewed
CVE-2012-3002 was published May 17, 2022
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB... High Unreviewed
CVE-2012-6437 was published May 17, 2022
freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a... High Unreviewed
CVE-2012-6066 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database