GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,306

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

357 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-1044 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-1040 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-1117 was published May 17, 2022

The file scanning mechanism of JFilterInput::isFileSafe() in Joomla! CMS before 3.6.5 does not... Critical Unreviewed

CVE-2016-9836 was published May 17, 2022

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate... Critical Unreviewed

CVE-2016-5964 was published May 17, 2022

IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to... Critical Unreviewed

CVE-2016-9005 was published May 17, 2022

IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 uses an inadequate account lockout setting that... Critical Unreviewed

CVE-2016-6095 was published May 17, 2022

include/functions_installer.inc.php in Serendipity through 2.0.5 is vulnerable to File Inclusion... Critical Unreviewed

CVE-2016-10082 was published May 17, 2022

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite ... Critical Unreviewed

CVE-2016-8325 was published May 17, 2022

The following SIEMENS branded IP Camera Models CCMW3025, CVMW3025-IR, CFMW3025 prior to version 1... Critical Unreviewed

CVE-2016-9155 was published May 17, 2022

Cougar-LG stores sensitive information under the web root with insufficient access control, which... Critical Unreviewed

CVE-2014-3928 was published May 17, 2022

sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a... Critical Unreviewed

CVE-2016-7794 was published May 17, 2022

Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values,... Critical Unreviewed

CVE-2016-8584 was published May 17, 2022

An issue was discovered on Schneider Electric IONXXXX series power meters ION73XX series, ION75XX... Critical Unreviewed

CVE-2016-5815 was published May 17, 2022

Vivint Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the alarm... Critical Unreviewed

CVE-2014-8362 was published May 17, 2022

IBM UrbanCode Deploy could allow a user to execute code using a specially crafted file upload... Critical Unreviewed

CVE-2016-8938 was published May 17, 2022

SAP HANA DB 1.00.73.00.389160 allows remote attackers to execute arbitrary code via vectors... Critical Unreviewed

CVE-2016-6143 was published May 17, 2022

An attacker with weak credentials could access the TCP port via an open FTP port, allowing an... Critical Unreviewed

CVE-2022-2103 was published Jun 25, 2022

A remote code execution vulnerability in the Qualcomm crypto driver could enable a remote... Critical Unreviewed

CVE-2016-8418 was published May 17, 2022

Unspecified vulnerability in the Oracle VM VirtualBox component before 5.1.4 in Oracle... Critical Unreviewed

CVE-2016-5605 was published May 17, 2022

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006... Critical Unreviewed

CVE-2016-6958 was published May 17, 2022

Siemens Automation License Manager (ALM) before 5.3 SP3 allows remote attackers to write to files... Critical Unreviewed

CVE-2016-8565 was published May 17, 2022

The Apache HTTP Server in Apple OS X before 10.12 and OS X Server before 5.2 follows RFC 3875... Critical Unreviewed

CVE-2016-4694 was published May 17, 2022

This vulnerability allows remote attackers to execute escalate privileges on affected... Critical Unreviewed

CVE-2021-27258 was published May 24, 2022

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

Previous 1 2 … 11 12 13 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

357 advisories