GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,204
Composer 4,802
Erlang 36
GitHub Actions 29
Go 2,386
Maven 5,773
npm 4,016
NuGet 720
pip 3,811
Pub 12
RubyGems 930
Rust 988
Swift 38

Unreviewed advisories

All unreviewed 263,080

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

109,561 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Undertow vulnerable to Denial of Service (DoS) attacks High

CVE-2021-3859 was published for io.undertow:undertow-core (Maven) Jul 15, 2022

Sophos Web Appliance before 3.7.8.2 allows (1) remote attackers to execute arbitrary commands via... High Unreviewed

CVE-2013-2642 was published May 17, 2022

crosh in Google Chrome OS before 33.0.1750.152 allows attackers to inject commands via... High Unreviewed

CVE-2014-1706 was published May 17, 2022

Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X,... High Unreviewed

CVE-2013-1371 was published May 17, 2022

An unspecified Enghouse Interactive Professional Services "addon product" in Enghouse Interactive... High Unreviewed

CVE-2013-6838 was published May 17, 2022

Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X,... High Unreviewed

CVE-2013-1378 was published May 17, 2022

Directory traversal vulnerability in CrosDisks in Google Chrome OS before 33.0.1750.152 has... High Unreviewed

CVE-2014-1707 was published May 17, 2022

Unspecified vulnerability in JustSystems Sanshiro 2007 before update 3, 2008 before update 5,... High Unreviewed

CVE-2014-0810 was published May 17, 2022

LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in... High Unreviewed

CVE-2022-41568 was published Nov 29, 2022

IBM PureApplication System 2.2.3.0 through 2.2.5.3 could allow an authenticated user with local... High Unreviewed

CVE-2019-4241 was published May 24, 2022

A vulnerability classified as problematic has been found in Kakao PotPlayer. This affects an... High Unreviewed

CVE-2022-4246 was published Dec 1, 2022

gtkutils.c in Pidgin before 2.10.8 on Windows allows user-assisted remote attackers to execute... High Unreviewed

CVE-2013-6486 was published May 17, 2022

Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code... High Unreviewed

CVE-2014-1248 was published May 17, 2022

Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code... High Unreviewed

CVE-2013-3938 was published May 17, 2022

** DISPUTED ** The User-Defined Functions (UDF) feature in TigerGraph 3.6.0 allows installation... High Unreviewed

CVE-2022-30331 was published Sep 6, 2022

StarWind SAN and NAS v0.2 build 1914 allow remote code execution. High Unreviewed

CVE-2022-32268 was published Jun 4, 2022

Goomph before 3.37.2 allows malicious zip file to write contents to arbitrary locations High

CVE-2022-26049 was published for com.diffplug.gradle:goomph (Maven) Sep 12, 2022

A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) V15 (All versions), SIMATIC... High Unreviewed

CVE-2021-42029 was published Apr 13, 2022

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo... High Unreviewed

CVE-2021-4210 was published Apr 23, 2022

EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle... High Unreviewed

CVE-2014-0629 was published May 17, 2022

recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to... High Unreviewed

CVE-2014-3139 was published May 17, 2022

Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote... High Unreviewed

CVE-2013-5639 was published May 17, 2022

Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users... High Unreviewed

CVE-2013-6767 was published May 17, 2022

Adobe Shockwave Player before 12.1.0.150 allows remote attackers to execute arbitrary code or... High Unreviewed

CVE-2014-0505 was published May 17, 2022

SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module... High Unreviewed

CVE-2013-5117 was published May 17, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109,561 advisories