Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

264,455 advisories

Loading
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. The issue... Moderate Unreviewed
CVE-2017-6982 was published May 17, 2022
PHP remote file inclusion vulnerability in connexion.php in PHPGKit 0.9 allows remote attackers... High Unreviewed
CVE-2008-6491 was published May 17, 2022
libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (crash)... Moderate Unreviewed
CVE-2008-6680 was published May 17, 2022
Windows Hyper-V in Windows 10 1607, 1703, and Windows Server 2016 allows a denial of service... Moderate Unreviewed
CVE-2017-8623 was published May 17, 2022
An out-of-bounds read flaw related to the assess_packet function in eapmd5pass.c:211 was found in... High Unreviewed
CVE-2017-11669 was published May 17, 2022
VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in... Moderate Unreviewed
CVE-2017-4916 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the update feature in Drupal 5.x... Moderate Unreviewed
CVE-2008-6532 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in DCD GoogleMap (dcdgooglemap) 1.1.0 and earlier... Moderate Unreviewed
CVE-2008-6687 was published May 17, 2022
SQL injection vulnerability in CoolURI (cooluri) 1.0.11 and earlier extension for TYPO3 allows... High Unreviewed
CVE-2008-6686 was published May 17, 2022
Nortel Communication Server 1000 4.50.x allows remote attackers to obtain Web application... Moderate Unreviewed
CVE-2008-6579 was published May 17, 2022
Vertex4 SunAge 1.08.1 and earlier allows remote attackers to cause a denial of service (infinite... Moderate Unreviewed
CVE-2008-6671 was published May 17, 2022
Unspecified vulnerability in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x... High Unreviewed
CVE-2008-6574 was published May 17, 2022
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could... Critical Unreviewed
CVE-2022-31768 was published Jun 7, 2022
In WIFI Firmware, there is a possible memory corruption due to a use after free. This could lead... High Unreviewed
CVE-2022-21745 was published Jun 7, 2022
The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease... High Unreviewed
CVE-2022-1419 was published Jun 3, 2022
Viewing restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20755 was published May 24, 2022
Operational restrictions bypass vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows... Moderate Unreviewed
CVE-2021-20759 was published May 24, 2022
An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker... High Unreviewed
CVE-2021-31228 was published May 24, 2022
Viewing restrictions bypass vulnerability in Address of Cybozu Garoon 4.0.0 to 5.0.2 allows a... Moderate Unreviewed
CVE-2021-20756 was published May 24, 2022
IBM QRadar SIEM 7.3.0 to 7.3.3 Patch 8 and 7.4.0 to 7.4.3 GA uses weaker than expected... High Unreviewed
CVE-2021-20337 was published May 24, 2022
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-21746 was published Jun 7, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-21755 was published Jun 7, 2022
BI Launchpad and CMC in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2,... Moderate Unreviewed
CVE-2020-6220 was published Jun 7, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in Security... High Unreviewed
CVE-2021-1809 was published May 24, 2022
Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon... High Unreviewed
CVE-2021-1930 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database