Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

115 advisories

Loading
Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows... Low Unreviewed
CVE-2022-33706 was published Jul 13, 2022
Improper access control vulnerability in updateLastConnectedClientInfo function of... Low Unreviewed
CVE-2022-30750 was published Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed
CVE-2022-30752 was published Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed
CVE-2022-30751 was published Jul 13, 2022
Philips SureSigns VS4, A.07.107 and prior. The software does not restrict or incorrectly... Low Unreviewed
CVE-2020-16241 was published May 24, 2022
cPanel before 66.0.2 allows demo accounts to create databases and users (SEC-271). Low Unreviewed
CVE-2017-18421 was published May 24, 2022
cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC... Low Unreviewed
CVE-2017-18384 was published May 24, 2022
Mozilla Firefox OS before 2.2 allows physically proximate attackers to bypass the pass-code... Low Unreviewed
CVE-2015-5960 was published May 17, 2022
The Colorbox module 7.x-2.x before 7.x-2.10 for Drupal allows remote authenticated users with... Low Unreviewed
CVE-2015-7881 was published May 17, 2022
The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x... Low Unreviewed
CVE-2015-8001 was published May 17, 2022
The Gemalto SafeNet Luna HSM allows remote authenticated users to bypass intended key-export... Low Unreviewed
CVE-2015-5464 was published May 17, 2022
runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue... Low Unreviewed
CVE-2015-7473 was published May 17, 2022
SpringBoard in Apple iOS before 9 allows physically proximate attackers to bypass a lock-screen... Low Unreviewed
CVE-2015-5861 was published May 17, 2022
IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 mishandles authorization, which... Low Unreviewed
CVE-2016-2874 was published May 17, 2022
IBM Tivoli Storage Productivity Center could allow an authenticated user with intimate knowledge... Low Unreviewed
CVE-2016-8942 was published May 17, 2022
A vulnerability has been identified in IBM Cloud Orchestrator services/[action]/launch API. An... Low Unreviewed
CVE-2015-7494 was published May 17, 2022
Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a "reflected file download"... Low Unreviewed
CVE-2016-4874 was published May 17, 2022
Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent... Low Unreviewed
CVE-2016-5551 was published May 17, 2022
Unspecified vulnerability in the Oracle Identity Manager component in Oracle Fusion Middleware... Low Unreviewed
CVE-2016-5506 was published May 17, 2022
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability... Low Unreviewed
CVE-2016-5615 was published May 17, 2022
IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions,... Low Unreviewed
CVE-2014-6110 was published May 17, 2022
The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup... Low Unreviewed
CVE-2014-6195 was published May 17, 2022
LoginWindow in Apple OS X before 10.10.2 does not transition to the lock-screen state immediately... Low Unreviewed
CVE-2014-8827 was published May 17, 2022
SpotlightIndex in Apple OS X before 10.10.2 does not properly perform deserialization during... Low Unreviewed
CVE-2014-8833 was published May 17, 2022
IBM InfoSphere Information Server 8.5 through FP3, 8.7 through FP2, 9.1 through 9.1.2.0, 11.3... Low Unreviewed
CVE-2015-7490 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database