Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,501 advisories

Loading
EMC Documentum WebTop 6.8 before Patch 13 and 6.8.1 before Patch 02, Documentum Administrator 7.x... Moderate Unreviewed
CVE-2016-0914 was published May 17, 2022
An elevation of privilege vulnerability in Telephony could enable a local malicious application... Moderate Unreviewed
CVE-2016-6771 was published May 17, 2022
An elevation of privilege vulnerability in Smart Lock could enable a local malicious user to... Moderate Unreviewed
CVE-2016-6769 was published May 17, 2022
An elevation of privilege vulnerability in the Framework API could enable a local malicious... Moderate Unreviewed
CVE-2016-6770 was published May 17, 2022
Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security)... Moderate Unreviewed
CVE-2015-8987 was published May 17, 2022
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed
CVE-2016-4031 was published May 17, 2022
Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT... Moderate Unreviewed
CVE-2016-8793 was published May 17, 2022
IBM Security Privileged Identity Manager Virtual Appliance allows an authenticated user to upload... Moderate Unreviewed
CVE-2016-5990 was published May 17, 2022
hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating... Moderate Unreviewed
CVE-2016-5026 was published May 17, 2022
IBM Connections 5.5 and earlier is vulnerable to possible link manipulation attack that could... Moderate Unreviewed
CVE-2016-0308 was published May 17, 2022
IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST... Moderate Unreviewed
CVE-2016-0320 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8300 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8311 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8299 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services... Moderate Unreviewed
CVE-2016-8309 was published May 17, 2022
An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to... Moderate Unreviewed
CVE-2016-10223 was published May 17, 2022
The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier... Moderate Unreviewed
CVE-2016-1178 was published May 17, 2022
Mozilla Firefox before 46.0 allows remote attackers to bypass the Content Security Policy (CSP)... Moderate Unreviewed
CVE-2016-2816 was published May 17, 2022
IBM WebSphere MQ 9.0.0.1 and 9.0.2 could allow a local user to write to a file or delete files in... Moderate Unreviewed
CVE-2016-6089 was published May 17, 2022
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2016-4908 was published May 17, 2022
MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote... Moderate Unreviewed
CVE-2016-6336 was published May 17, 2022
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed
CVE-2016-4032 was published May 17, 2022
Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3),... Moderate Unreviewed
CVE-2016-4030 was published May 17, 2022
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2016-4910 was published May 17, 2022
markdown-it before 4.1.0 does not block data: URLs. Moderate Unreviewed
CVE-2015-3295 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database