Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,361 advisories

Loading
A denial of service vulnerability exists in the syscall filtering functionality of the Kaspersky... Moderate Unreviewed
CVE-2016-4304 was published May 17, 2022
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in... High Unreviewed
CVE-2016-3863 was published May 17, 2022
This vulnerability allows remote attackers to execute escalate privileges on affected... Critical Unreviewed
CVE-2021-27258 was published May 24, 2022
The export_data function of the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4... High Unreviewed
CVE-2021-24352 was published May 24, 2022
The Easy Cookies Policy WordPress plugin through 1.6.2 is lacking any capability and CSRF check... Moderate Unreviewed
CVE-2021-24405 was published May 24, 2022
Vulnerable versions of the JupiterX Core (<= 2.0.6) plugin register an AJAX action... High Unreviewed
CVE-2022-1659 was published Jun 14, 2022
server/notification/NotificationManagerService.java in the Notification Manager Service in... Moderate Unreviewed
CVE-2016-3884 was published May 17, 2022
arm-wt-22k/lib_src/eas_mdls.c in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1... High Unreviewed
CVE-2016-3879 was published May 17, 2022
A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky... Moderate Unreviewed
CVE-2016-4307 was published May 17, 2022
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups. High Unreviewed
CVE-2015-7887 was published May 17, 2022
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 has Improper... High Unreviewed
CVE-2021-24197 was published May 24, 2022
Improper access control vulnerability in share_link in QSAN Storage Manager allows remote... High Unreviewed
CVE-2021-32517 was published May 24, 2022
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd... High Unreviewed
CVE-2014-9828 was published May 17, 2022
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted... High Unreviewed
CVE-2014-9830 was published May 17, 2022
The WP Survey Plus WordPress plugin through 1.0 does not have any authorisation and CSRF checks... Moderate Unreviewed
CVE-2021-24801 was published May 24, 2022
The Hashthemes Demo Importer Plugin <= 1.1.1 for WordPress contained several AJAX functions which... High Unreviewed
CVE-2021-39333 was published May 24, 2022
Vulnerable versions of the Jupiter Theme (<= 6.10.1) allow arbitrary plugin deletion by any... Moderate Unreviewed
CVE-2022-1658 was published Jun 14, 2022
coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted... High Unreviewed
CVE-2014-9831 was published May 17, 2022
Mozilla Firefox before 49.0 allows remote attackers to bypass the Same Origin Policy via a... High Unreviewed
CVE-2016-5283 was published May 17, 2022
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E... High Unreviewed
CVE-2016-5593 was published May 17, 2022
Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 12... Moderate Unreviewed
CVE-2016-5571 was published May 17, 2022
Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 12... Moderate Unreviewed
CVE-2016-5570 was published May 17, 2022
Unspecified vulnerability in the Oracle iRecruitment component in Oracle E-Business Suite 12.1.1... Moderate Unreviewed
CVE-2016-5581 was published May 17, 2022
Unspecified vulnerability in the Oracle Interaction Center Intelligence component in Oracle E... Moderate Unreviewed
CVE-2016-5585 was published May 17, 2022
Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 12.1.1... High Unreviewed
CVE-2016-5562 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database