GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,556
Composer 5,975
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,648
npm 6,420
NuGet 974
pip 5,303
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 307,830

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,451 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4... High Unreviewed

CVE-2011-2748 was published May 13, 2022

apt 0.8.16, 0.9.7, and possibly other versions does not properly handle InRelease files, which... Moderate Unreviewed

CVE-2013-1051 was published May 13, 2022

APT before 1.0.9 does not "invalidate repository data" when moving from an unauthenticated to... Moderate Unreviewed

CVE-2014-0488 was published May 13, 2022

APT before 1.0.9, when the Acquire::GzipIndexes option is enabled, does not validate checksums,... High Unreviewed

CVE-2014-0489 was published May 13, 2022

ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number... High Unreviewed

CVE-2016-2774 was published May 13, 2022

In WinSCP before 5.14 beta, due to missing validation, the scp implementation would accept... High Unreviewed

CVE-2018-20684 was published May 13, 2022

The krb5_db2_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka... High Unreviewed

CVE-2011-4151 was published May 13, 2022

The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through... High Unreviewed

CVE-2011-1527 was published May 13, 2022

The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1... Moderate Unreviewed

CVE-2010-4022 was published May 13, 2022

The process_chpw_request function in schpw.c in the password-changing functionality in kadmind in... High Unreviewed

CVE-2011-0285 was published May 13, 2022

The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka... High Unreviewed

CVE-2011-1529 was published May 13, 2022

The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka... High Unreviewed

CVE-2011-1528 was published May 13, 2022

The kdc_handle_protected_negotiation function in the Key Distribution Center (KDC) in MIT... High Unreviewed

CVE-2012-1015 was published May 13, 2022

do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4... Low Unreviewed

CVE-2013-1417 was published May 13, 2022

The WebVPN portal in Cisco Adaptive Security Appliance (ASA) Software 8.4(.7.15) and earlier... Moderate Unreviewed

CVE-2014-2151 was published May 13, 2022

Cisco Adaptive Security Appliance (ASA) Software 8.2 through 9.4.3.3 allows remote attackers to... Moderate Unreviewed

CVE-2016-1445 was published May 13, 2022

The 1Password application 6.8 for Android is affected by a Denial Of Service vulnerability. By... Moderate Unreviewed

CVE-2018-13042 was published May 13, 2022

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a... Moderate Unreviewed

CVE-2017-5606 was published May 13, 2022

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a... Moderate Unreviewed

CVE-2017-5592 was published May 13, 2022

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue... Moderate Unreviewed

CVE-2017-2371 was published May 13, 2022

TorrentFlux 2.4 allows remote authenticated users to delete or modify other users' cookies via... Moderate Unreviewed

CVE-2014-6029 was published May 13, 2022

TorrentFlux 2.4 allows remote authenticated users to obtain other users' cookies via the cid... Moderate Unreviewed

CVE-2014-6028 was published May 13, 2022

The vulnerability is due to insufficient handling of update_file request parameter on... High Unreviewed

CVE-2018-7777 was published May 13, 2022

The VPN component in Windscribe 1.81 uses the OpenVPN client for connections. Also, it creates a... High Unreviewed

CVE-2018-11479 was published May 13, 2022

The web server on Siemens SCALANCE X-200IRT switches with firmware before 5.2.0 allows remote... Moderate Unreviewed

CVE-2015-1049 was published May 13, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

12,451 advisories