GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,240

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

838 advisories

Filter by severity

Sort by

Least recently updated

The client in EMC Replication Manager (RM) before 5.5.3.0_01-PatchHotfix, EMC Network Module for... Critical Unreviewed

CVE-2016-0913 was published May 17, 2022

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Critical Unreviewed

CVE-2017-2434 was published May 17, 2022

install/make-config.php in ProjectSend r754 allows remote attackers to execute arbitrary PHP code... Critical Unreviewed

CVE-2017-9741 was published May 17, 2022

Zoho ManageEngine Desktop Central before build 100082 allows remote attackers to obtain control... Critical Unreviewed

CVE-2017-7213 was published May 17, 2022

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.4, and Dell BSAFE Micro Edition Suite, ... Critical Unreviewed

CVE-2020-29507 was published Jul 12, 2022

Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart)... Critical Unreviewed

CVE-2017-6551 was published May 17, 2022

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, ... Critical Unreviewed

CVE-2020-35169 was published Jul 12, 2022

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, ... Critical Unreviewed

CVE-2020-29508 was published Jul 12, 2022

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed

CVE-2022-20841 was published Aug 11, 2022

Obsidian 0.14.x and 0.15.x before 0.15.5 allows obsidian://hook-get-address remote code execution... Critical Unreviewed

CVE-2022-36450 was published Jul 26, 2022

Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a... Critical Unreviewed

CVE-2016-6206 was published May 17, 2022

Adobe Captivate versions 9 and earlier have a remote code execution vulnerability in the quiz... Critical Unreviewed

CVE-2017-3098 was published May 17, 2022

A vulnerability in the update process for the dynamic JAR file of the Cisco Context Service... Critical Unreviewed

CVE-2017-6667 was published May 17, 2022

PHP remote file inclusion vulnerability in editInplace.php in Wonder CMS 2014 allows remote... Critical Unreviewed

CVE-2014-8705 was published May 17, 2022

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.60, 1.7.x... Critical Unreviewed

CVE-2017-2773 was published May 17, 2022

Adobe Campaign versions Build 8770 and earlier have an input validation bypass that could be... Critical Unreviewed

CVE-2017-2989 was published May 17, 2022

The datamover module in the Linux version of NovaBACKUP DataCenter before 09.06.03.0353 is... Critical Unreviewed

CVE-2016-4898 was published May 17, 2022

The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename... Critical Unreviewed

CVE-2017-5215 was published May 17, 2022

The datamover module in the Linux version of NovaBACKUP DataCenter before 09.06.03.0353 is... Critical Unreviewed

CVE-2016-4899 was published May 17, 2022

The Curve25519 code in botan before 1.11.31, on systems without a native 128-bit integer type,... Critical Unreviewed

CVE-2016-6878 was published May 17, 2022

A vulnerability in Siemens SICAM PAS (all versions before V8.09) could allow a remote attacker to... Critical Unreviewed

CVE-2016-9157 was published May 17, 2022

The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary... Critical Unreviewed

CVE-2016-7407 was published May 17, 2022

CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows... Critical Unreviewed

CVE-2015-8212 was published May 17, 2022

Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An... Critical Unreviewed

CVE-2016-7791 was published May 17, 2022

Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An... Critical Unreviewed

CVE-2016-7790 was published May 17, 2022

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

838 advisories