Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,616 advisories

Loading
In specific circumstances, trace file buffers in GitLab Runner versions up to 14.3.4, 14.4 to 14... High Unreviewed
CVE-2021-39947 was published Jun 7, 2022
Authentication Bypass in Trend Micro Control Manager 6.0 causes Information Disclosure when... High Unreviewed
CVE-2017-11387 was published May 17, 2022
A vulnerability was found in Evolution Events Artaxerxes. It has been declared as problematic.... High Unreviewed
CVE-2022-4869 was published Jan 5, 2023
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9478 was published May 17, 2022
D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and... High Unreviewed
CVE-2017-6206 was published May 17, 2022
Adobe AIR SDK & Compiler before 23.0.0.257 on Windows does not support Android runtime-analytics... High Unreviewed
CVE-2016-6936 was published May 17, 2022
An issue was discovered in Tilde CMS 1.0.1. Arbitrary files can be read via a file=../ attack on... High Unreviewed
CVE-2017-11325 was published May 17, 2022
The Simple Download Monitor WordPress plugin before 3.9.6 saves logs in a predictable location,... High Unreviewed
CVE-2021-24695 was published May 24, 2022
A vulnerability in the web management interface of Cisco Secure Email and Web Manager, formerly... High Unreviewed
CVE-2022-20664 was published Jun 16, 2022
An improper certificate validation vulnerability in Fortinet FortiManager 5.0.6 through 5.2.7 and... High Unreviewed
CVE-2016-8495 was published May 17, 2022
IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, 8.5.x before 8... High Unreviewed
CVE-2016-5986 was published May 17, 2022
EMC RSA Archer Security Operations Management with RSA Unified Collector Framework versions prior... High Unreviewed
CVE-2017-4977 was published May 17, 2022
Opera before 9.60 allows remote attackers to obtain sensitive information and have unspecified... High Unreviewed
CVE-2008-4695 was published May 17, 2022
GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18... High Unreviewed
CVE-2017-1000025 was published May 17, 2022
Hostname confusion in parse-url High
CVE-2022-0722 was published for parse-url (npm) Jun 28, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9484 was published May 17, 2022
Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Local File... High Unreviewed
CVE-2017-1000029 was published May 17, 2022
EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior... High Unreviewed
CVE-2016-6650 was published May 17, 2022
Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not... High Unreviewed
CVE-2017-0377 was published May 17, 2022
NetApp Snap Creator Framework before 4.3.1 discloses sensitive information which could be viewed... High Unreviewed
CVE-2016-7172 was published May 17, 2022
An issue was discovered in certain Apple products. macOS Server before 5.3 is affected. The issue... High Unreviewed
CVE-2017-2382 was published May 17, 2022
Sensitive Information Disclosure in com.trend.iwss.gui.servlet.ConfigBackup in Trend Micro... High Unreviewed
CVE-2016-9314 was published May 17, 2022
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows... High Unreviewed
CVE-2016-4711 was published May 17, 2022
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7... High Unreviewed
CVE-2016-5495 was published May 17, 2022
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7... High Unreviewed
CVE-2016-5500 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database