GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,229

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

24,433 advisories

Filter by severity

Sort by

Least recently updated

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16346 was published May 13, 2022

In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14479 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16343 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16345 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16338 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16344 was published May 13, 2022

The Cryptocurrency Widgets Pack WordPress plugin through 1.8.1 does not sanitise and escape some... Critical Unreviewed

CVE-2022-4059 was published Jan 3, 2023

An issue was discovered in SageCRM 7.x before 7.3 SP3. The Component Manager functionality,... Critical Unreviewed

CVE-2017-5219 was published May 13, 2022

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Critical Unreviewed

CVE-2017-3510 was published May 13, 2022

EMC ESRS Policy Manager prior to 6.8 contains an undocumented account (OpenDS admin) with a... Critical Unreviewed

CVE-2017-4976 was published May 13, 2022

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle... Critical Unreviewed

CVE-2017-3503 was published May 13, 2022

EMC Mainframe Enablers ResourcePak Base versions 7.6.0, 8.0.0, and 8.1.0 contains a fix for a... Critical Unreviewed

CVE-2017-4982 was published May 13, 2022

Certain Technicolor devices have an SNMP access-control bypass, possibly involving an ISP... Critical Unreviewed

CVE-2017-5135 was published May 13, 2022

In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14478 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16341 was published May 13, 2022

In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14476 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16347 was published May 13, 2022

In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14477 was published May 13, 2022

In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14480 was published May 13, 2022

In the MMM::Agent::Helpers::_execute function in MySQL Multi-Master Replication Manager (MMM)... Critical Unreviewed

CVE-2017-14474 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16342 was published May 13, 2022

Remote code execution in PATCH requests in Spring Data REST Critical

CVE-2017-8046 was published for org.springframework.data:spring-data-rest-core (Maven) May 13, 2022

Jenkins SSH Plugin user passwords for encrypted SSH keys stored in plaintext Critical

CVE-2017-1000245 was published for org.jenkins-ci.plugins:ssh (Maven) May 13, 2022

The patch for directory traversal (CVE-2017-5480) in b2evolution version 6.8.4-stable has a... Critical Unreviewed

CVE-2017-5539 was published May 13, 2022

The JSON viewer in the Developer Tools uses insecure methods to create a communication channel... Critical Unreviewed

CVE-2017-5390 was published May 13, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,433 advisories