GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
282 advisories
Filter by severity
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2016-10491
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2016-10480
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2015-9220
was published
May 14, 2022
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that...
Critical
Unreviewed
CVE-2017-5340
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9201
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2015-9190
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9160
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400...
Critical
Unreviewed
CVE-2015-9133
was published
May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile SD 210/SD 212/SD...
Critical
Unreviewed
CVE-2017-8275
was published
May 14, 2022
An error in argument length checking in JavaScript, leading to potential integer overflows or...
Critical
Unreviewed
CVE-2016-5297
was published
May 14, 2022
An integer overflow during the parsing of XML using the Expat library. This vulnerability affects...
Critical
Unreviewed
CVE-2016-9063
was published
May 14, 2022
An integer overflow in "createImageBitmap()" was reported through the Pwn2Own contest. The fix...
Critical
Unreviewed
CVE-2017-5428
was published
May 14, 2022
An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch...
Critical
Unreviewed
CVE-2017-6350
was published
May 14, 2022
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0...
Critical
Unreviewed
CVE-2017-6349
was published
May 14, 2022
An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all...
Critical
Unreviewed
CVE-2018-3586
was published
May 14, 2022
The increaseApproval function of a smart contract implementation for Tracto (TRCT), an Ethereum...
Critical
Unreviewed
CVE-2018-14063
was published
May 14, 2022
An issue was discovered in a smart contract implementation for STeX White List (STE(WL)), an...
Critical
Unreviewed
CVE-2018-14088
was published
May 14, 2022
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable...
Critical
Unreviewed
CVE-2016-7875
was published
May 14, 2022
A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus...
Critical
Unreviewed
CVE-2012-6706
was published
May 14, 2022
Integer overflow in the str_pad function in ext/standard/string.c in PHP before 7.0.4 allows...
Critical
Unreviewed
CVE-2016-4346
was published
May 14, 2022
The NTLM authentication feature in curl and libcurl before 7.57.0 on 32-bit platforms allows...
Critical
Unreviewed
CVE-2017-8816
was published
May 14, 2022
Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and ...
Critical
Unreviewed
CVE-2016-7167
was published
May 14, 2022
utils/ut_rpc.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to...
Critical
Unreviewed
CVE-2018-17568
was published
May 14, 2022
utils/ut_ws_svr.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to...
Critical
Unreviewed
CVE-2018-17570
was published
May 14, 2022
network/nw_buf.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to...
Critical
Unreviewed
CVE-2018-17569
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API