Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,286
Erlang
31
GitHub Actions
21
Go
2,058
Maven
5,000+
npm
3,742
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

101,539 advisories

Loading
Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code via vectors... High Unreviewed
CVE-2015-6467 was published May 17, 2022
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials... High Unreviewed
CVE-2015-8280 was published May 17, 2022
Zenoss Core through 5 Beta 3 allows remote attackers to bypass intended access restrictions and... High Unreviewed
CVE-2014-6256 was published May 17, 2022
Directory traversal vulnerability in WebManager in NEC EXPRESSCLUSTER X through 3.3 11.31 on... High Unreviewed
CVE-2016-1145 was published May 17, 2022
Directory traversal vulnerability in wiki.c in didiwiki allows remote attackers to read arbitrary... High Unreviewed
CVE-2013-7448 was published May 17, 2022
wolfSSL (formerly CyaSSL) before 3.6.8 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2015-6925 was published May 17, 2022
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem... High Unreviewed
CVE-2015-8281 was published May 17, 2022
Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA... High Unreviewed
CVE-2015-8306 was published May 17, 2022
The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0 FP19, 8... High Unreviewed
CVE-2015-5012 was published May 17, 2022
Belkin F9K1102 2 devices with firmware 2.10.17 use an improper algorithm for selecting the ID... High Unreviewed
CVE-2015-5987 was published May 17, 2022
The MessageBrokerServlet servlet in Moxa OnCell Central Manager before 2.2 does not require... High Unreviewed
CVE-2015-6480 was published May 17, 2022
Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have... High Unreviewed
CVE-2015-8564 was published May 17, 2022
Advantech WebAccess before 8.1 allows remote attackers to cause a denial of service (out-of... High Unreviewed
CVE-2016-0851 was published May 17, 2022
Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an... High Unreviewed
CVE-2016-0958 was published May 17, 2022
Stack-based buffer overflow in Hospira Communication Engine (CE) before 1.2 in LifeCare PCA... High Unreviewed
CVE-2015-7909 was published May 17, 2022
Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0... High Unreviewed
CVE-2015-7470 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Advantech WebAccess before 8.1 allows remote... High Unreviewed
CVE-2015-3946 was published May 17, 2022
Open redirect vulnerability in Blue Coat ProxySG 6.5 before 6.5.8.8 and 6.6 and Advanced Secure... High Unreviewed
CVE-2015-8597 was published May 17, 2022
SQL injection vulnerability in Advantech WebAccess before 8.1 allows remote authenticated users... High Unreviewed
CVE-2015-3947 was published May 17, 2022
Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1... High Unreviewed
CVE-2015-7907 was published May 17, 2022
QNAP Signage Station before 2.0.1 allows remote attackers to bypass authentication, and... High Unreviewed
CVE-2015-6036 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the Organizations and Remediation... High Unreviewed
CVE-2016-2199 was published May 17, 2022
examples/consumer/common.php in JanRain PHP OpenID library (aka php-openid) improperly checks the... High Unreviewed
CVE-2016-2049 was published May 17, 2022
The Web UI in IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 allows remote authenticated... High Unreviewed
CVE-2015-4956 was published May 17, 2022
The web GUI on Cisco Small Business 500 devices 1.2.0.92 allows remote attackers to cause a... High Unreviewed
CVE-2016-1303 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database