Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,656
Maven
5,000+
npm
4,284
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2016-8947 was published May 17, 2022
EMC RSA Archer 5.4.1.3, 5.5.3.1, 5.5.2.3, 5.5.2, 5.5.1.3.1, 5.5.1.1 is affected by an open... Moderate Unreviewed
CVE-2017-5002 was published May 17, 2022
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software... Moderate Unreviewed
CVE-2017-6604 was published May 17, 2022
In Nagios XI through 5.8.5, an open redirect vulnerability exists in the login function that... Moderate Unreviewed
CVE-2022-29272 was published Jun 30, 2022
A vulnerability in the web framework of Cisco Prime Service Catalog could allow an authenticated,... Moderate Unreviewed
CVE-2017-3810 was published May 17, 2022
A vulnerability in the web interface of the Cisco Secure Access Control System (ACS) could allow... Moderate Unreviewed
CVE-2017-3840 was published May 17, 2022
A vulnerability in a URL parameter of Cisco WebEx Meeting Center could allow an unauthenticated,... Moderate Unreviewed
CVE-2017-3799 was published May 17, 2022
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2016-8953 was published May 17, 2022
IBM Rhapsody DM 5.0 and 6.0 could allow a remote attacker to conduct phishing attacks, using an... Moderate Unreviewed
CVE-2017-1287 was published May 17, 2022
dayrui FineCms 5.0.9 has URL Redirector Abuse via the url parameter in a sync action, related to... Moderate Unreviewed
CVE-2017-11586 was published May 17, 2022
If the user enables the https function on the device, an attacker can modify the user’s request... Moderate Unreviewed
CVE-2022-30562 was published Jun 29, 2022
An open redirect vulnerability is present in Piwigo 2.9 and probably prior versions, allowing... Moderate Unreviewed
CVE-2017-9464 was published May 17, 2022
In habitica versions v4.119.0 through v4.232.2 are vulnerable to open redirect via the login page. Moderate Unreviewed
CVE-2022-23078 was published Jun 23, 2022
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-2497 was published May 17, 2022
IBM Tivoli Endpoint Manager could allow a remote attacker to conduct phishing attacks, using an... Moderate Unreviewed
CVE-2017-1223 was published May 17, 2022
A vulnerability classified as problematic has been found in TrueConf Server 4.3.7. This affects... Moderate Unreviewed
CVE-2017-20119 was published Jun 30, 2022
Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12... Moderate Unreviewed
CVE-2022-33712 was published Jul 13, 2022
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and... Moderate Unreviewed
CVE-2017-8621 was published May 17, 2022
IBM Business Process Manager 8.0 and 8.5 could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2017-1159 was published May 17, 2022
Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.2, Splunk Enterprise 6.3.x... Moderate Unreviewed
CVE-2016-4857 was published May 17, 2022
Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.3, Splunk Enterprise 6.3.x... Moderate Unreviewed
CVE-2016-4859 was published May 17, 2022
Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2... Moderate Unreviewed
CVE-2016-10368 was published May 17, 2022
An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4... Moderate Unreviewed
CVE-2017-3126 was published May 17, 2022
Open Redirect in microweber Moderate
CVE-2022-2252 was published for microweber/microweber (Composer) Jun 30, 2022
Open redirect in web2py Moderate
CVE-2022-33146 was published for web2py (pip) Jun 28, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database