GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,678
Composer 4,237
Erlang 31
GitHub Actions 20
Go 1,998
Maven 5,182
npm 3,710
NuGet 661
pip 3,364
Pub 11
RubyGems 885
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 235,056

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

117,818 advisories

Filter by severity

Sort by

Least recently updated

EMC Documentum Web Development Kit (WDK) before 6.8 allows remote attackers to conduct frame... Moderate Unreviewed

CVE-2014-4638 was published May 17, 2022

Mozilla Firefox before 37.0 on OS X does not ensure that the cursor is visible, which allows... Moderate Unreviewed

CVE-2015-0810 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in IBM UrbanCode Deploy 6.2.x before 6.2.1.2 allows... Moderate Unreviewed

CVE-2016-2994 was published May 17, 2022

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0... Moderate Unreviewed

CVE-2016-5954 was published May 17, 2022

The web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 FP10, 8.8 before 8.8.0.9049... Moderate Unreviewed

CVE-2016-5976 was published May 17, 2022

The installation component in IBM Rational Asset Analyzer (RAA) 6.1.0 before FP10 allows local... Moderate Unreviewed

CVE-2016-5967 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4... Moderate Unreviewed

CVE-2016-2045 was published May 17, 2022

The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM) before 3.1 inadvertently... Moderate Unreviewed

CVE-2015-2809 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in the Contact Form DB (aka CFDB and contact-form... Moderate Unreviewed

CVE-2015-1874 was published May 17, 2022

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via... Moderate Unreviewed

CVE-2014-6570 was published May 17, 2022

DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows... Moderate Unreviewed

CVE-2014-8764 was published May 17, 2022

The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to... Moderate Unreviewed

CVE-2016-3810 was published May 17, 2022

Cisco Small Business 500 Wireless Access Point devices with firmware 1.0.4.4 allow remote... Moderate Unreviewed

CVE-2016-1334 was published May 17, 2022

Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction... Moderate Unreviewed

CVE-2016-1316 was published May 17, 2022

Cisco Unified Communications Manager 11.5(0.98000.480) allows remote authenticated users to... Moderate Unreviewed

CVE-2016-1317 was published May 17, 2022

The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4... Moderate Unreviewed

CVE-2016-5243 was published May 17, 2022

An elevation of privilege vulnerability in the Account Manager Service in Android 7.0 before 2016... Moderate Unreviewed

CVE-2016-6718 was published May 17, 2022

media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver in Android 4.x before 4.4... Moderate Unreviewed

CVE-2016-3764 was published May 17, 2022

Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun... Moderate Unreviewed

CVE-2016-5486 was published May 17, 2022

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated... Moderate Unreviewed

CVE-2016-5092 was published May 17, 2022

WebSheet in Apple iOS before 9.2.1 allows remote attackers to read or write to cookies by... Moderate Unreviewed

CVE-2016-1730 was published May 17, 2022

The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus... Moderate Unreviewed

CVE-2016-6684 was published May 17, 2022

The NVIDIA profiler in Android before 2016-10-05 on Nexus 9 devices allows attackers to obtain... Moderate Unreviewed

CVE-2016-6687 was published May 17, 2022

The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS... Moderate Unreviewed

CVE-2016-5242 was published May 17, 2022

The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does... Moderate Unreviewed

CVE-2016-4482 was published May 17, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117,818 advisories