Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,826
Erlang
36
GitHub Actions
32
Go
2,426
Maven
5,000+
npm
4,058
NuGet
723
pip
3,848
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,817 advisories

Loading
WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly restrict redirects that... Moderate Unreviewed
CVE-2016-1782 was published May 14, 2022
Samsung KNOX 1.0.0 uses the shared certificate on Android, which allows local users to conduct... Moderate Unreviewed
CVE-2016-1920 was published May 14, 2022
The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers... Moderate Unreviewed
CVE-2016-3715 was published May 14, 2022
Atlassian Bamboo before 5.11.4.1 and 5.12.x before 5.12.3.1 does not properly restrict permitted... Critical Unreviewed
CVE-2016-5229 was published May 14, 2022
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion... High Unreviewed
CVE-2016-5574 was published May 14, 2022
MagpieRSS, as used in the front-end component in Nagios Core before 4.2.2 might allow remote... Critical Unreviewed
CVE-2016-9565 was published May 14, 2022
The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5... High Unreviewed
CVE-2016-7048 was published May 14, 2022
Outlook Web App (OWA) in Microsoft Exchange Server 2007 SP3, 2010 SP3, and 2013 SP1 and... Moderate Unreviewed
CVE-2014-6319 was published May 14, 2022
Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to spoof... Moderate Unreviewed
CVE-2015-1631 was published May 14, 2022
Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 does not... High Unreviewed
CVE-2015-1763 was published May 14, 2022
Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 uses an... Moderate Unreviewed
CVE-2015-1761 was published May 14, 2022
Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS... Critical Unreviewed
CVE-2016-0088 was published May 14, 2022
OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8... High Unreviewed
CVE-2016-0153 was published May 14, 2022
GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8... High Unreviewed
CVE-2016-0170 was published May 14, 2022
Windows Journal in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and... High Unreviewed
CVE-2016-0182 was published May 14, 2022
Windows Shell in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10... High Unreviewed
CVE-2016-0179 was published May 14, 2022
The Windows font library in Microsoft Office 2010 SP2, Word 2010 SP2, Word Automation Services on... High Unreviewed
CVE-2016-0183 was published May 14, 2022
The User Mode Code Integrity (UMCI) implementation in Device Guard in Microsoft Internet Explorer... High Unreviewed
CVE-2016-0188 was published May 14, 2022
Microsoft Edge allows remote attackers to bypass the ASLR protection mechanism via a crafted web... Moderate Unreviewed
CVE-2016-3244 was published May 14, 2022
Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP... Moderate Unreviewed
CVE-2016-3245 was published May 14, 2022
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to conduct... Low Unreviewed
CVE-2016-3274 was published May 14, 2022
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to conduct content... Low Unreviewed
CVE-2016-3276 was published May 14, 2022
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... Moderate Unreviewed
CVE-2016-3299 was published May 14, 2022
The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and... High Unreviewed
CVE-2016-3319 was published May 14, 2022
The SMBv1 server in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7... High Unreviewed
CVE-2016-3345 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database