GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 279,126

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

144,589 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003... Moderate Unreviewed

CVE-2015-6491 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and... Moderate Unreviewed

CVE-2015-6493 was published May 17, 2022

The SAND STUDIO AirDroid application 1.1.0 and earlier for Android mishandles implicit intents,... Moderate Unreviewed

CVE-2015-5661 was published May 17, 2022

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6535 was published May 17, 2022

The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote... Moderate Unreviewed

CVE-2015-7991 was published May 17, 2022

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory... Moderate Unreviewed

CVE-2014-5213 was published May 17, 2022

Apple Type Services (ATS) in Apple OS X before 10.11.1 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-6985 was published May 17, 2022

The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X before 10.11.1 allows local... Moderate Unreviewed

CVE-2015-7020 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite... Moderate Unreviewed

CVE-2014-6471 was published May 17, 2022

The SNMPv2 implementation in Cisco IOS XR allows remote authenticated users to cause a denial of... Moderate Unreviewed

CVE-2015-0661 was published May 17, 2022

AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local users to cause a denial of service ... Moderate Unreviewed

CVE-2014-1253 was published May 17, 2022

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file... Moderate Unreviewed

CVE-2015-8003 was published May 17, 2022

The Breezy application for Android does not verify that the server hostname matches a domain name... Moderate Unreviewed

CVE-2012-5811 was published May 17, 2022

SAP 3D Visual Enterprise Viewer (VEV) allows remote attackers to execute arbitrary code via a... Moderate Unreviewed

CVE-2015-8029 was published May 17, 2022

The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which... Moderate Unreviewed

CVE-2015-5643 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in wlsecurity.html on NetCommWireless NB604N routers... Moderate Unreviewed

CVE-2014-4871 was published May 17, 2022

Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11... Moderate Unreviewed

CVE-2014-8555 was published May 17, 2022

Techno Project Japan Enisys Gw before 1.4.1 allows remote authenticated users to write to... Moderate Unreviewed

CVE-2015-5669 was published May 17, 2022

Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier does not properly implement... Moderate Unreviewed

CVE-2015-0663 was published May 17, 2022

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... Moderate Unreviewed

CVE-2014-4295 was published May 17, 2022

Unspecified vulnerability in the Application Express component in Oracle Database Server before 4... Moderate Unreviewed

CVE-2014-6483 was published May 17, 2022

The Dubstep Hero (aka com.electricpunch.dubstephero) application 1.9 for Android does not verify... Moderate Unreviewed

CVE-2014-5848 was published May 17, 2022

The recycle bin feature in the Monster Menus module 7.x-1.21 before 7.x-1.24 for Drupal does not... Moderate Unreviewed

CVE-2015-8095 was published May 17, 2022

Multiple buffer overflows in SAP 3D Visual Enterprise Viewer (VEV) allow remote attackers to... Moderate Unreviewed

CVE-2015-8028 was published May 17, 2022

RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack... Moderate Unreviewed

CVE-2015-1464 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

144,589 advisories