GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,997
Composer 5,075
Erlang 39
GitHub Actions 38
Go 2,744
Maven 6,162
npm 4,341
NuGet 765
pip 4,113
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,122

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

145,070 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10... Moderate Unreviewed

CVE-2014-2712 was published May 17, 2022

mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to... Moderate Unreviewed

CVE-2015-7718 was published May 17, 2022

Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply... Moderate Unreviewed

CVE-2014-6498 was published May 17, 2022

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite... Moderate Unreviewed

CVE-2014-6471 was published May 17, 2022

SAP 3D Visual Enterprise Viewer (VEV) allows remote attackers to execute arbitrary code via a... Moderate Unreviewed

CVE-2015-8029 was published May 17, 2022

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1... Moderate Unreviewed

CVE-2015-0987 was published May 17, 2022

Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11... Moderate Unreviewed

CVE-2014-8555 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in (1) search_ajax.tpl and (2)... Moderate Unreviewed

CVE-2014-4743 was published May 17, 2022

Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier does not properly implement... Moderate Unreviewed

CVE-2015-0663 was published May 17, 2022

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft... Moderate Unreviewed

CVE-2014-6535 was published May 17, 2022

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... Moderate Unreviewed

CVE-2014-4295 was published May 17, 2022

Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host... Moderate Unreviewed

CVE-2011-1166 was published May 17, 2022

Unspecified vulnerability in the Application Express component in Oracle Database Server before 4... Moderate Unreviewed

CVE-2014-6483 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in the help pages in Cisco Common Services,... Moderate Unreviewed

CVE-2015-0594 was published May 17, 2022

The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS allows remote attackers... Moderate Unreviewed

CVE-2015-0659 was published May 17, 2022

The SNMPv2 implementation in Cisco IOS XR allows remote authenticated users to cause a denial of... Moderate Unreviewed

CVE-2015-0661 was published May 17, 2022

Multiple buffer overflows in SAP 3D Visual Enterprise Viewer (VEV) allow remote attackers to... Moderate Unreviewed

CVE-2015-8028 was published May 17, 2022

Techno Project Japan Enisys Gw before 1.4.1 allows remote authenticated users to write to... Moderate Unreviewed

CVE-2015-5669 was published May 17, 2022

RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack... Moderate Unreviewed

CVE-2015-1464 was published May 17, 2022

Apple Type Services (ATS) in Apple OS X before 10.11.1 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-6985 was published May 17, 2022

Audio in Apple OS X before 10.11.1 allows remote attackers to execute arbitrary code or cause a... Moderate Unreviewed

CVE-2015-5933 was published May 17, 2022

The default configuration of Cisco Small Business IP phones SPA 300 7.5.5 and SPA 500 7.5.5 does... Moderate Unreviewed

CVE-2015-0670 was published May 17, 2022

The Breezy application for Android does not verify that the server hostname matches a domain name... Moderate Unreviewed

CVE-2012-5811 was published May 17, 2022

The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote... Moderate Unreviewed

CVE-2015-7991 was published May 17, 2022

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory... Moderate Unreviewed

CVE-2014-5213 was published May 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

145,070 advisories