GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,556
Composer 5,975
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,648
npm 6,420
NuGet 974
pip 5,303
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 307,830

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

160,669 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The CPU Software in Apple OS X before 10.10.2 allows physically proximate attackers to modify... Moderate Unreviewed

CVE-2014-4498 was published May 17, 2022

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10... Moderate Unreviewed

CVE-2014-6534 was published May 17, 2022

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... Moderate Unreviewed

CVE-2014-6537 was published May 17, 2022

IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator 5.2 before 5020500_9... Moderate Unreviewed

CVE-2015-5019 was published May 17, 2022

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6460 was published May 17, 2022

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1... Moderate Unreviewed

CVE-2015-0143 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for... Moderate Unreviewed

CVE-2014-8671 was published May 17, 2022

Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to execute... Moderate Unreviewed

CVE-2015-0682 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability on Janitza UMG 508, 509, 511, 604, and 605... Moderate Unreviewed

CVE-2015-3967 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Web Reference Database (aka refbase)... Moderate Unreviewed

CVE-2015-7383 was published May 17, 2022

The installer in ICZ MATCHA SNS before 1.3.7 does not properly configure the database, which... Moderate Unreviewed

CVE-2015-5644 was published May 17, 2022

Eval injection in test-net.xsjs in the Web-based Development Workbench in SAP HANA Developer... Moderate Unreviewed

CVE-2015-7729 was published May 17, 2022

eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal (aka eventapp) web application before 2015... Moderate Unreviewed

CVE-2015-5673 was published May 17, 2022

The Newphoria Photon application before 1.2 for Android allows attackers to bypass a URL... Moderate Unreviewed

CVE-2015-5637 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Moderate Unreviewed

CVE-2014-6539 was published May 17, 2022

Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8... Moderate Unreviewed

CVE-2014-9202 was published May 17, 2022

IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL encoding, which allows... Moderate Unreviewed

CVE-2015-1002 was published May 17, 2022

SecurityAgent in Apple OS X before 10.11.1 does not prevent synthetic clicks from reaching... Moderate Unreviewed

CVE-2015-5943 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Moderate Unreviewed

CVE-2014-6523 was published May 17, 2022

The Groupon Redemptions application for Android does not verify that the server hostname matches... Moderate Unreviewed

CVE-2012-5809 was published May 17, 2022

Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 allows remote attackers to... Moderate Unreviewed

CVE-2015-6482 was published May 17, 2022

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11... Moderate Unreviewed

CVE-2014-4298 was published May 17, 2022

The user interface in WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x... Moderate Unreviewed

CVE-2015-1084 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in Web Reference Database (aka refbase) through 0... Moderate Unreviewed

CVE-2015-6007 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Kentico CMS 8.2 allow remote attackers to... Moderate Unreviewed

CVE-2015-7822 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

160,669 advisories