Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,800
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,805
Pub
12
RubyGems
927
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

123,448 advisories

Loading
Maian Uploader 4.0 allows remote attackers to obtain sensitive information via a request without... Moderate Unreviewed
CVE-2014-10005 was published May 17, 2022
Buffer overflow in the bGetPPS function in wordole.c in Antiword 0.37 allows remote attackers to... Moderate Unreviewed
CVE-2014-8123 was published May 17, 2022
OpenStack PackStack 2012.2.1, when the Open vSwitch (OVS) monolithic plug-in is not used, does... Moderate Unreviewed
CVE-2014-3703 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in WebsiteBaker 2.8.3 allow remote attackers... Moderate Unreviewed
CVE-2014-9243 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in includes/refreshDate.php in the Joomlaskin JS Multi... Moderate Unreviewed
CVE-2013-7419 was published May 17, 2022
models/comment.php in Anchor CMS 0.9.2 and earlier allows remote attackers to inject arbitrary... Moderate Unreviewed
CVE-2014-9182 was published May 17, 2022
The Bond Trading (aka com.appmakr.app613309) application 197705 for Android does not verify X.509... Moderate Unreviewed
CVE-2014-4901 was published May 17, 2022
The Villa Antonia (aka com.appbuilder.u7p5019) application 1 for Android does not verify X.509... Moderate Unreviewed
CVE-2014-7631 was published May 17, 2022
The MyMetro (aka com.myrippleapps.mymetro) application 2.4.7 for Android does not verify X.509... Moderate Unreviewed
CVE-2014-4894 was published May 17, 2022
The Indian Cement Review (aka com.magzter.indiancementreview) application 3.01 for Android does... Moderate Unreviewed
CVE-2014-4899 was published May 17, 2022
The Affinity Mobile ATM Locator (aka com.collegemobile.affinity.locator) application 1.5 for... Moderate Unreviewed
CVE-2014-7622 was published May 17, 2022
The Gravey Design (aka com.dreamstep.wGraveyDesign) application 0.58.13357.54919 for Android does... Moderate Unreviewed
CVE-2014-7603 was published May 17, 2022
The Interior Design (aka com.interior.design.mcreda) application 1.0 for Android does not verify... Moderate Unreviewed
CVE-2014-7618 was published May 17, 2022
The Joint Radio Blues (aka com.nobexinc.wls_69685189.rc) application 3.2.3 for Android does not... Moderate Unreviewed
CVE-2014-4887 was published May 17, 2022
The Physics Forums (aka com.tapatalk.physicsforumscom) application 3.9.22 for Android does not... Moderate Unreviewed
CVE-2014-7616 was published May 17, 2022
The Myanmar Housing : mmHome (aka com.mmhome3) application 1.3 for Android does not verify X.509... Moderate Unreviewed
CVE-2014-6927 was published May 17, 2022
The Face Fun Photo Collage Maker 2 (aka com.kauf.facefunphotocollagemaker2) application 1.3.0 for... Moderate Unreviewed
CVE-2014-7443 was published May 17, 2022
The basketball news & videos (aka com.basketbal.news.caesar) application 1.0 for Android does not... Moderate Unreviewed
CVE-2014-7550 was published May 17, 2022
The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and... Moderate Unreviewed
CVE-2014-3407 was published May 17, 2022
SQL injection vulnerability in htdocs/modules/system/admin.php in XOOPS before 2.5.7 Final allows... Moderate Unreviewed
CVE-2014-8999 was published May 17, 2022
Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2... Moderate Unreviewed
CVE-2014-7195 was published May 17, 2022
The House365 Radio (aka com.nobexinc.wls_27853803.rc) application 3.2.3 for Android does not... Moderate Unreviewed
CVE-2014-7796 was published May 17, 2022
The B&H Photo Video Pro Audio (aka com.bhphoto) application 2.5.1 for Android does not verify X... Moderate Unreviewed
CVE-2014-7577 was published May 17, 2022
The Best Greatness Quotes (aka best.free.greatness.quotes.android.app) application 1.0 for... Moderate Unreviewed
CVE-2014-7569 was published May 17, 2022
The Texas Poker Unlimited Hold'em (aka com.fpinternet.texaspokerunlimitedholdem) application 1.2... Moderate Unreviewed
CVE-2014-7547 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database