GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,935
Composer 5,069
Erlang 39
GitHub Actions 38
Go 2,726
Maven 6,143
npm 4,331
NuGet 763
pip 4,107
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,299

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

144,648 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-site scripting (XSS) vulnerability in Unified Web Interaction Manager in Cisco Unified Web... Moderate Unreviewed

CVE-2015-0655 was published May 17, 2022

The SIP implementation in Cisco IOS 15.5(3)M on Cisco Unified Border Element (CUBE) devices... Moderate Unreviewed

CVE-2015-6343 was published May 17, 2022

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail... Moderate Unreviewed

CVE-2015-8005 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the PageTriage toolbar in the PageTriage extension... Moderate Unreviewed

CVE-2015-8006 was published May 17, 2022

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1... Moderate Unreviewed

CVE-2014-6553 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory... Moderate Unreviewed

CVE-2014-5212 was published May 17, 2022

A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services... Moderate Unreviewed

CVE-2013-2599 was published May 17, 2022

The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x... Moderate Unreviewed

CVE-2015-8002 was published May 17, 2022

The default AFSecurityPolicy.validatesDomainName configuration for AFSSLPinningModeNone in the... Moderate Unreviewed

CVE-2015-3996 was published May 17, 2022

The virtual filesystem in ownCloud Server before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0... Moderate Unreviewed

CVE-2015-5954 was published May 17, 2022

The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular... Moderate Unreviewed

CVE-2014-0477 was published May 17, 2022

3S-Smart CODESYS Gateway Server before 2.3.9.48 allows remote attackers to cause a denial of... Moderate Unreviewed

CVE-2015-6484 was published May 17, 2022

Unspecified vulnerability in the Application Performance Management component in Oracle... Moderate Unreviewed

CVE-2014-6557 was published May 17, 2022

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11... Moderate Unreviewed

CVE-2014-6454 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business... Moderate Unreviewed

CVE-2014-6479 was published May 17, 2022

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 provides different... Moderate Unreviewed

CVE-2015-7902 was published May 17, 2022

SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote authenticated users to cause a denial... Moderate Unreviewed

CVE-2015-7992 was published May 17, 2022

The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary... Moderate Unreviewed

CVE-2013-3646 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Moderate Unreviewed

CVE-2014-4281 was published May 17, 2022

The Trading 212 FOREX (aka com.avuscapital.trading212) application before 2.0.9 for Android does... Moderate Unreviewed

CVE-2014-5578 was published May 17, 2022

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11... Moderate Unreviewed

CVE-2014-4300 was published May 17, 2022

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11... Moderate Unreviewed

CVE-2014-4299 was published May 17, 2022

The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to... Moderate Unreviewed

CVE-2013-3647 was published May 17, 2022

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11... Moderate Unreviewed

CVE-2014-6542 was published May 17, 2022

SQL injection vulnerability in IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... Moderate Unreviewed

CVE-2015-1989 was published May 17, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

144,648 advisories