Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,545 advisories

Loading
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows... High Unreviewed
CVE-2017-2101 was published May 17, 2022
Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker... High Unreviewed
CVE-2022-30755 was published Jul 13, 2022
The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with... High Unreviewed
CVE-2015-2800 was published May 17, 2022
On Wireless IP Camera (P2P) WIFICAM devices, an attacker can use the RTSP server on port 10554... High Unreviewed
CVE-2017-8223 was published May 17, 2022
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication... High Unreviewed
CVE-2016-1502 was published May 17, 2022
Due to a lack of authentication, an unauthenticated user who knows the Eview EV-07S GPS Tracker's... High Unreviewed
CVE-2017-5237 was published May 17, 2022
An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application... High Unreviewed
CVE-2017-2332 was published May 17, 2022
The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically... High Unreviewed
CVE-2016-4484 was published May 17, 2022
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions),... High Unreviewed
CVE-2021-46304 was published Aug 11, 2022
Browsing the admin.html page allows the user to reset the admin password. Also appears in the JS... High Unreviewed
CVE-2022-30624 was published Jul 19, 2022
Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows unauthenticated attackers to view... High Unreviewed
CVE-2022-34535 was published Jul 20, 2022
TRENDnet WiFi Baby Cam TV-IP743SIC has a password of admin for the backdoor root account. High Unreviewed
CVE-2015-2880 was published May 17, 2022
The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject... High Unreviewed
CVE-2016-1888 was published May 17, 2022
The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3... High Unreviewed
CVE-2015-6280 was published May 17, 2022
McAfee SmartFilter Administration, and SmartFilter Administration Bess Edition, before 4.2.1.01... High Unreviewed
CVE-2012-4599 was published May 17, 2022
Unspecified vulnerability in HP SiteScope 11.1x through 11.13 and 11.2x through 11.24 allows... High Unreviewed
CVE-2014-2614 was published May 17, 2022
IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before... High Unreviewed
CVE-2015-0198 was published May 17, 2022
The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 and 4.x before 4.0... High Unreviewed
CVE-2016-7144 was published May 17, 2022
FortiOS 5.2.3, when configured to use High Availability (HA) and the dedicated management... High Unreviewed
CVE-2015-7361 was published May 17, 2022
A vulnerability in the implementation of X.509 Version 3 for SSH authentication functionality in... High Unreviewed
CVE-2016-6474 was published May 17, 2022
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers... High Unreviewed
CVE-2015-2033 was published May 17, 2022
Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic... High Unreviewed
CVE-2016-4860 was published May 17, 2022
Cisco Prime Collaboration Assurance before 11.0 has a hardcoded cmuser account, which allows... High Unreviewed
CVE-2015-6389 was published May 17, 2022
The Adaptive Security Device Management (ASDM) remote-management feature in Cisco Adaptive... High Unreviewed
CVE-2013-5511 was published May 17, 2022
The OAuth client Single Sign On WordPress plugin before 3.0.4 does not have authorisation and... High Unreviewed
CVE-2022-3119 was published Sep 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database