Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,038
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,038 advisories

Loading
GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and... Moderate Unreviewed
CVE-2013-4581 was published May 17, 2022
The File Gallery plugin before 1.7.9.2 for WordPress does not properly escape strings, which... Moderate Unreviewed
CVE-2014-2558 was published May 17, 2022
The The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for... Moderate Unreviewed
CVE-2025-3422 was published Apr 11, 2025
The Microsoft Bing application before 4.2.1 for Android allows remote attackers to install... Moderate Unreviewed
CVE-2014-1670 was published May 14, 2022
The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using... Moderate Unreviewed
CVE-2013-7050 was published May 17, 2022
The Groovy script console in VMware Hyperic HQ 4.6.6 allows remote authenticated administrators... Moderate Unreviewed
CVE-2013-6366 was published May 17, 2022
The XMLParse procedure in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 ESD 2 allows remote... Moderate Unreviewed
CVE-2013-6025 was published May 17, 2022
Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x... Moderate Unreviewed
CVE-2013-1899 was published May 17, 2022
dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1, when register_globals is enabled,... Moderate Unreviewed
CVE-2011-5130 was published May 17, 2022
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X,... Moderate Unreviewed
CVE-2012-4143 was published May 17, 2022
Opera before 11.62 allows user-assisted remote attackers to trick users into downloading and... Moderate Unreviewed
CVE-2012-1924 was published May 14, 2022
PHP remote file inclusion vulnerability in Classes/Controller/AbstractController.php in the... Moderate Unreviewed
CVE-2011-4614 was published May 17, 2022
Eval injection vulnerability in config.php in Support Incident Tracker (aka SiT!) 3.65 allows... Moderate Unreviewed
CVE-2011-3832 was published May 17, 2022
PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery... Moderate Unreviewed
CVE-2010-5040 was published May 17, 2022
SQL injection vulnerability in wp-postratings.php in the WP-PostRatings plugin 1.50, 1.61, and... Moderate Unreviewed
CVE-2011-4646 was published May 17, 2022
CRLF injection vulnerability in Bugzilla 2.17.1 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before... Moderate Unreviewed
CVE-2011-2381 was published May 17, 2022
libraries/server_synchronize.lib.php in the Synchronize implementation in phpMyAdmin 3.x before 3... Moderate Unreviewed
CVE-2011-2507 was published May 14, 2022
CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x... Moderate Unreviewed
CVE-2010-4572 was published May 17, 2022
Incomplete blacklist vulnerability in config.template.php in vtiger CRM before 5.2.1 allows... Moderate Unreviewed
CVE-2010-3909 was published May 14, 2022
share/ma/keys_for_user in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code... Moderate Unreviewed
CVE-2010-4096 was published May 17, 2022
The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and... Moderate Unreviewed
CVE-2010-2761 was published May 17, 2022
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products,... Moderate Unreviewed
CVE-2010-3429 was published May 14, 2022
Opera before 10.61 does not properly suppress clicks on download dialogs that became visible... Moderate Unreviewed
CVE-2010-2576 was published May 14, 2022
PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter... Moderate Unreviewed
CVE-2010-2314 was published May 17, 2022
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3,... Moderate Unreviewed
CVE-2010-1255 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database