Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

889 advisories

Loading
The mmc_ioctl_cdrom_read_data function in drivers/cdrom/cdrom.c in the Linux kernel through 3.10... Low Unreviewed
CVE-2013-2164 was published May 13, 2022
The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in... Low Unreviewed
CVE-2012-2420 was published May 13, 2022
The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in... Low Unreviewed
CVE-2012-2423 was published May 13, 2022
An out of bounds read was discovered in systemd-journald in the way it parses log messages that... Low Unreviewed
CVE-2018-16866 was published May 13, 2022
Atlassian JIRA Software 7.0.3, JIRA Core 7.0.3, and the bundled JIRA Service Desk 3.0.3 installer... Low Unreviewed
CVE-2015-8481 was published May 13, 2022
The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 through 1.5.0.1 does not... Low Unreviewed
CVE-2013-0527 was published May 5, 2022
The hidp_setup_hid function in net/bluetooth/hidp/core.c in the Linux kernel before 3.7.6 does... Low Unreviewed
CVE-2013-0349 was published May 5, 2022
The GUI installer in JBoss Enterprise Application Platform (EAP) and Enterprise Web Platform (EWP... Low Unreviewed
CVE-2013-0218 was published May 5, 2022
(a) mount and (b) umount in util-linux 2.14.1, 2.17.2, and probably other versions allow local... Low Unreviewed
CVE-2013-0157 was published May 5, 2022
The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke... Low Unreviewed
CVE-2013-0160 was published May 5, 2022
D-Link DIR-865L has Information Disclosure. Low Unreviewed
CVE-2013-4856 was published May 5, 2022
The SUSE Audit Log Keeper daemon before 0.2.1-0.4.6.1 for SUSE Manager and Spacewalk uses world... Low Unreviewed
CVE-2012-0421 was published May 4, 2022
Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this... Low Unreviewed
CVE-2008-2937 was published May 3, 2022
NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to... Low Unreviewed
CVE-2006-4537 was published May 3, 2022
Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows local users to obtain... Low Unreviewed
CVE-2010-1294 was published May 2, 2022
probers/udisks-dm-export.c in udisks before 1.0.1 exports UDISKS_DM_TARGETS_PARAMS information to... Low Unreviewed
CVE-2010-1149 was published May 2, 2022
The Free Software Foundation (FSF) Berkeley DB NSS module (aka libnss-db) 2.2.3pre1 reads the... Low Unreviewed
CVE-2010-0826 was published May 2, 2022
Microsoft Internet Explorer 6 and 7 on Windows XP and Vista does not prevent script from... Low Unreviewed
CVE-2010-0808 was published May 2, 2022
sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain detailed error messages about the... Low Unreviewed
CVE-2010-0790 was published May 2, 2022
pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users to determine the existence... Low Unreviewed
CVE-2010-0750 was published May 2, 2022
Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent... Low Unreviewed
CVE-2010-0384 was published May 2, 2022
Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the... Low Unreviewed
CVE-2010-0119 was published May 2, 2022
The Web Post Protection feature in McAfee Host Data Loss Prevention (DLP) 3.x before 3.0.100.10... Low Unreviewed
CVE-2009-5117 was published May 2, 2022
Pentaho BI Server 1.7.0.1062 and earlier does not set the autocomplete tag to off on web pages... Low Unreviewed
CVE-2009-5100 was published May 2, 2022
nm-connection-editor in NetworkManager (NM) 0.7.x exports connection objects over D-Bus upon... Low Unreviewed
CVE-2009-4145 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database