GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
12,802 advisories
Filter by severity
Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote...
High
Unreviewed
CVE-2010-3415
was published
May 13, 2022
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 12.0 through 12.4 and 15.0...
High
Unreviewed
CVE-2017-6743
was published
May 13, 2022
Google Chrome before 5.0.375.127 does not properly implement file dialogs, which allows attackers...
High
Unreviewed
CVE-2010-3112
was published
May 13, 2022
Google Chrome before 5.0.375.127 does not properly implement the Geolocation feature, which...
High
Unreviewed
CVE-2010-3120
was published
May 13, 2022
Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not properly handle counter nodes,...
High
Unreviewed
CVE-2010-3255
was published
May 13, 2022
Google Chrome before 5.0.375.127 and webkitgtk before 1.2.6 do not properly support the Ruby...
High
Unreviewed
CVE-2010-3119
was published
May 13, 2022
Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5, does not properly handle SVG...
High
Unreviewed
CVE-2010-3113
was published
May 13, 2022
Multiple stack-based buffer overflows in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel...
High
Unreviewed
CVE-2013-4588
was published
May 13, 2022
Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which...
Critical
Unreviewed
CVE-2010-3416
was published
May 13, 2022
The implementation of notification permissions in Google Chrome before 6.0.472.53 allows...
High
Unreviewed
CVE-2010-3253
was published
May 13, 2022
The rendering implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause...
High
Unreviewed
CVE-2010-2901
was published
May 13, 2022
Avira Antivirus engine versions before 8.3.36.60 allow remote code execution as NT AUTHORITY...
High
Unreviewed
CVE-2016-10402
was published
May 13, 2022
The SVG implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a...
High
Unreviewed
CVE-2010-2902
was published
May 13, 2022
The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1...
High
Unreviewed
CVE-2011-2692
was published
May 13, 2022
The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3,...
Moderate
Unreviewed
CVE-2013-0772
was published
May 13, 2022
The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR...
High
Unreviewed
CVE-2012-5833
was published
May 13, 2022
Stack-based buffer overflow in the supply_lm_input_write function in drivers/thermal...
High
Unreviewed
CVE-2016-2063
was published
May 13, 2022
The Cascading Style Sheets (CSS) implementation in Google Chrome before 5.0.375.99 does not...
High
Unreviewed
CVE-2010-2651
was published
May 13, 2022
The implementation of the Unicode Bidirectional Algorithm (aka Bidi algorithm or UBA) in Google...
High
Unreviewed
CVE-2010-2648
was published
May 13, 2022
Buffer overflow in the nsCharTraits::length function in Mozilla Firefox before 16.0, Firefox ESR...
High
Unreviewed
CVE-2012-4185
was published
May 13, 2022
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird...
High
Unreviewed
CVE-2012-4187
was published
May 13, 2022
Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory...
High
Unreviewed
CVE-2010-2647
was published
May 13, 2022
Heap-based buffer overflow in the nsHTMLEditor::IsPrevCharInNodeWhitespace function in Mozilla...
High
Unreviewed
CVE-2012-4180
was published
May 13, 2022
Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2,...
High
Unreviewed
CVE-2013-0752
was published
May 13, 2022
Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox...
High
Unreviewed
CVE-2012-4186
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API