GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,903

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

562 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The TradeKing Forex for iPhone app 1.2.1 for iOS does not verify X.509 certificates from SSL... Moderate Unreviewed

CVE-2017-5913 was published May 17, 2022

The State Bank of India State Bank Anywhere app 5.1.0 for iOS does not verify X.509 certificates... Moderate Unreviewed

CVE-2017-5901 was published May 17, 2022

The Everyday Health Diabetes in Check: Blood Glucose & Carb Tracker app 3.4.2 for iOS does not... Moderate Unreviewed

CVE-2017-5906 was published May 17, 2022

The Emirates NBD Bank P.J.S.C Emirates NBD KSA app 3.10.0 through 3.10.4 (UAE) and 2.0.1 through... Moderate Unreviewed

CVE-2017-5915 was published May 17, 2022

The Banco Santander Mexico SA Supermovil app 3.5 through 3.7 for iOS does not verify X.509... Moderate Unreviewed

CVE-2017-5911 was published May 17, 2022

The 21st Century Insurance app 10.0.0 for iOS does not verify X.509 certificates from SSL servers... Moderate Unreviewed

CVE-2017-5919 was published May 17, 2022

The Dollar Bank Mobile app 2.6.3 for iOS does not verify X.509 certificates from SSL servers,... Moderate Unreviewed

CVE-2017-5905 was published May 13, 2022

The Space Coast Credit Union Mobile app 2.2 for iOS and 2.1.0.1104 for Android does not verify X... Moderate Unreviewed

CVE-2017-3212 was published May 13, 2022

The DOT IT Banque Zitouna app 2.1 for iOS does not verify X.509 certificates from SSL servers,... Moderate Unreviewed

CVE-2017-5914 was published May 13, 2022

Acceptance of invalid/self-signed TLS certificates in "Panda Mobile Security" 1.1 for iOS allows... Moderate Unreviewed

CVE-2017-8060 was published May 13, 2022

The PayQuicker app 1.0.0 for iOS does not verify X.509 certificates from SSL servers, which... Moderate Unreviewed

CVE-2017-5902 was published May 13, 2022

The FOREX.com FOREXTrader for iPhone app 2.9.12 through 2.9.14 for iOS does not verify X.509... Moderate Unreviewed

CVE-2017-5912 was published May 17, 2022

The C client and C-based client bindings in the Apache Qpid Proton library before 0.13.1 on... Moderate Unreviewed

CVE-2016-4467 was published May 14, 2022

The Quest Information Systems Indiana Voters app 1.1.24 for iOS does not verify X.509... Moderate Unreviewed

CVE-2017-8935 was published May 13, 2022

DMMFX Trade for Android 1.5.0 and earlier, DMMFX DEMO Trade for Android 1.5.0 and earlier, and... Moderate Unreviewed

CVE-2016-4818 was published May 17, 2022

The Banco de Costa Rica BCR Movil app 3.7 for iOS does not verify X.509 certificates from SSL... Moderate Unreviewed

CVE-2017-5918 was published May 17, 2022

Acceptance of invalid/self-signed TLS certificates in Atlassian HipChat before 3.16.2 for iOS... Moderate Unreviewed

CVE-2017-8058 was published May 17, 2022

The America's First Federal Credit Union (FCU) Mobile Banking app 3.1.0 for iOS does not verify X... Moderate Unreviewed

CVE-2017-5916 was published May 17, 2022

The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint... Moderate Unreviewed

CVE-2016-9892 was published May 17, 2022

After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the... Moderate Unreviewed

CVE-2022-22747 was published Dec 22, 2022

When importing a revoked key that specified key compromise as the revocation reason, Thunderbird... Moderate Unreviewed

CVE-2022-1197 was published Dec 22, 2022

When displaying the sender of an email, and the sender name contained the Braille Pattern Blank... Moderate Unreviewed

CVE-2022-1834 was published Dec 22, 2022

If the user added a security exception for an invalid TLS certificate, opened an ongoing TLS... Moderate Unreviewed

CVE-2022-45419 was published Dec 22, 2022

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and... Moderate Unreviewed

CVE-2015-3152 was published May 14, 2022

Opera before 10.00 does not check all intermediate X.509 certificates for revocation, which makes... Moderate Unreviewed

CVE-2009-3046 was published May 2, 2022

Previous 1…6…23 Next

Previous 1 2 3 4 5 6 7 8 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

562 advisories