Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,765
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

103,102 advisories

Loading
The SQL interface in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote attackers to... High Unreviewed
CVE-2015-7994 was published May 17, 2022
Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X... High Unreviewed
CVE-2015-0310 was published May 17, 2022
Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on... High Unreviewed
CVE-2014-0529 was published May 17, 2022
libarchive in Apple OS X before 10.11.1 allows attackers to write to arbitrary files via a... High Unreviewed
CVE-2015-6984 was published May 17, 2022
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands... High Unreviewed
CVE-2015-7698 was published May 17, 2022
The filename sanitization component in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0... High Unreviewed
CVE-2015-4717 was published May 17, 2022
The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed... High Unreviewed
CVE-2015-7016 was published May 17, 2022
system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote attackers to conduct PHP... High Unreviewed
CVE-2015-5687 was published May 17, 2022
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... High Unreviewed
CVE-2014-6453 was published May 17, 2022
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... High Unreviewed
CVE-2014-6545 was published May 17, 2022
The Login Disable module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.2 for Drupal does not... High Unreviewed
CVE-2015-8082 was published May 17, 2022
Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003... High Unreviewed
CVE-2015-6492 was published May 17, 2022
OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote... High Unreviewed
CVE-2015-7856 was published May 17, 2022
SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1... High Unreviewed
CVE-2015-7730 was published May 17, 2022
The web interface on Janitza UMG 508, 509, 511, 604, and 605 devices supports only short PIN... High Unreviewed
CVE-2015-3972 was published May 17, 2022
IBM Cognos Disclosure Management (CDM) 10.1.x and 10.2.x before 10.2.4 IF10 allows man-in-the... High Unreviewed
CVE-2015-5014 was published May 17, 2022
The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc.... High Unreviewed
CVE-2014-7256 was published May 17, 2022
Cisco Virtual TelePresence Server Software does not properly restrict use of the serial port,... High Unreviewed
CVE-2015-0660 was published May 17, 2022
The Region_createFromParcel function in core/jni/android/graphics/Region.cpp in Region in Android... High Unreviewed
CVE-2015-3849 was published May 17, 2022
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2,... High Unreviewed
CVE-2015-0636 was published May 17, 2022
The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5... High Unreviewed
CVE-2015-3837 was published May 17, 2022
Integer overflow in the Bitmap_createFromParcel function in core/jni/android/graphics/Bitmap.cpp... High Unreviewed
CVE-2015-1536 was published May 17, 2022
PGSQL:SubmitQuery.do in ZOHO ManageEngine OpManager 11.6, 11.5, and earlier allows remote... High Unreviewed
CVE-2015-7766 was published May 17, 2022
Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. A1... High Unreviewed
CVE-2014-3936 was published May 17, 2022
mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to gain... High Unreviewed
CVE-2015-7717 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database