Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,004
Maven
5,000+
npm
5,000+
NuGet
974
pip
5,000+
Pub
13
RubyGems
1,069
Rust
1,395
Swift
61
Unreviewed advisories
All unreviewed
5,000+

127,899 advisories

Loading
A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a... High Unreviewed
CVE-2021-4106 was published Feb 17, 2022
The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 exposes an API router that... High Unreviewed
CVE-2021-43175 was published Dec 8, 2021
Vulnerability in dirhistory plugin Description: the widgets that go back and forward in the... High Unreviewed
CVE-2021-3725 was published Dec 1, 2021
SQL injection vulnerability in Tiki Wiki CMS Groupware 6 LTS before 6.13LTS, 9 LTS before 9.7LTS,... High Unreviewed
CVE-2013-4715 was published May 17, 2022
Stack-based buffer overflow on Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3... High Unreviewed
CVE-2013-4630 was published May 17, 2022
SQL injection vulnerability in m_worklog/log_searchday.jsp in Enorth Webpublisher CMS, possibly 5... High Unreviewed
CVE-2013-6985 was published May 17, 2022
A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping... High Unreviewed
CVE-2021-4021 was published Feb 25, 2022
Penta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to escalate privileges... High Unreviewed
CVE-2022-31322 was published Sep 14, 2022
The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 uses IP addresses... High Unreviewed
CVE-2022-40622 was published Sep 14, 2022
Elcomplus SmartPTT is vulnerable when a low-authenticated user can access higher level... High Unreviewed
CVE-2021-43939 was published Apr 29, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) uses the "... High Unreviewed
CVE-2021-42855 was published Mar 11, 2022
Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before... High Unreviewed
CVE-2011-4351 was published May 17, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40649 was published Sep 16, 2022
GroundWork Monitor Enterprise 6.7.0 performs authentication on the basis of the HTTP Referer... High Unreviewed
CVE-2013-3499 was published May 17, 2022
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3.... High Unreviewed
CVE-2013-6245 was published May 17, 2022
The kernel in Apple iOS before 7 uses an incorrect data size for a certain integer variable,... High Unreviewed
CVE-2013-5141 was published May 17, 2022
Unspecified vulnerability in the Hyperion Strategic Finance component in Oracle Hyperion 11.1.2.1... High Unreviewed
CVE-2013-3830 was published May 17, 2022
Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12... High Unreviewed
CVE-2014-0615 was published May 17, 2022
The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote... High Unreviewed
CVE-2012-5520 was published May 17, 2022
TensorFlow vulnerable to OOB read in `Gather_nd` in TF Lite High
CVE-2022-35937 was published for tensorflow (pip) Sep 16, 2022
Denial of service in video due to buffer over read while parsing MP4 clip in Snapdragon Auto,... High Unreviewed
CVE-2022-25669 was published Sep 17, 2022
The D-Link DSL-2740B Gateway with firmware EU_1.0, when an active administrator session exists,... High Unreviewed
CVE-2013-2271 was published May 17, 2022
Directory traversal vulnerability in the web-management interface in the server in Cisco Wide... High Unreviewed
CVE-2013-5554 was published May 17, 2022
The WIL-A module in Cisco TelePresence VX Clinical Assistant 1.2 before 1.21 changes the admin... High Unreviewed
CVE-2013-5558 was published May 17, 2022
The XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before... High Unreviewed
CVE-2014-0613 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database