GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,856

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

123,310 advisories

Filter by severity

Sort by

Least recently updated

Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4... Moderate Unreviewed

CVE-2015-4925 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in forgot.php in AudioShare 2.0.2 allows remote... Moderate Unreviewed

CVE-2015-4725 was published May 17, 2022

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1... Moderate Unreviewed

CVE-2015-4912 was published May 17, 2022

An information disclosure vulnerability in the NVIDIA GPU driver in Android before 2016-11-05... Moderate Unreviewed

CVE-2016-6746 was published May 17, 2022

Symantec Backup Exec 11.0, 12.0, 12.5, 13.0, and 13.0 R2 does not validate identity information... Moderate Unreviewed

CVE-2011-0546 was published May 17, 2022

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly... Moderate Unreviewed

CVE-2011-4576 was published May 17, 2022

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4... Moderate Unreviewed

CVE-2015-4838 was published May 17, 2022

An information disclosure vulnerability in Qualcomm components including the GPU driver, power... Moderate Unreviewed

CVE-2016-6749 was published May 17, 2022

IBM WebSphere MQ Light 1.x before 1.0.2 mishandles abbreviated TLS handshakes, which allows... Moderate Unreviewed

CVE-2015-4941 was published May 17, 2022

Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.4... Moderate Unreviewed

CVE-2015-4909 was published May 17, 2022

IBM WebSphere MQ Light 1.x before 1.0.2 allows remote attackers to cause a denial of service ... Moderate Unreviewed

CVE-2015-4943 was published May 17, 2022

Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware 11... Moderate Unreviewed

CVE-2015-4832 was published May 17, 2022

SQL injection vulnerability in ticket.php in TickFa 1.x allows remote authenticated users to... Moderate Unreviewed

CVE-2015-4676 was published May 17, 2022

EMC PowerPath Virtual Appliance (aka vApp) before 2.0 has default passwords for the (1) emcupdate... Moderate Unreviewed

CVE-2015-0529 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in SecuritySetting/UserSecurity/UserManagement... Moderate Unreviewed

CVE-2015-4460 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1... Moderate Unreviewed

CVE-2015-2938 was published May 17, 2022

SAP HANA SPS09 1.00.091.00.14186593 allows local users to obtain sensitive information by... Moderate Unreviewed

CVE-2016-6149 was published May 17, 2022

The iControl REST service in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and... Moderate Unreviewed

CVE-2016-5021 was published May 17, 2022

IBM Sterling Connect:Direct 4.5.00, 4.5.01, 4.6.0 before 4.6.0.6 iFix008, and 4.7.0 before 4.7.0... Moderate Unreviewed

CVE-2016-5991 was published May 17, 2022

Open redirect vulnerability in the web portal in IBM Tealeaf Customer Experience before 8.7.1... Moderate Unreviewed

CVE-2016-5977 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Cisco Transport Gateway Installation Software 4.1(4.0... Moderate Unreviewed

CVE-2016-6359 was published May 17, 2022

The (1) strip_tags, (2) setcookie, (3) strtok, (4) wordwrap, (5) str_word_count, and (6) str_pad... Moderate Unreviewed

CVE-2010-2101 was published May 17, 2022

The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer... Moderate Unreviewed

CVE-2010-2531 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the integrated web server in Siemens SINEMA Remote... Moderate Unreviewed

CVE-2016-6204 was published May 17, 2022

The Reader View implementation in Mozilla Firefox before 42.0 has an improper whitelist, which... Moderate Unreviewed

CVE-2015-4518 was published May 17, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

123,310 advisories