Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,268
Erlang
31
GitHub Actions
21
Go
2,042
Maven
5,000+
npm
3,736
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
867
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,092 advisories

Loading
Improper neutralization of special elements used in a user input allows an authenticated... High Unreviewed
CVE-2022-2323 was published Jul 30, 2022
An issue was discovered in Pivotal Greenplum before 4.3.10.0. Creation of external tables using... High Unreviewed
CVE-2016-6656 was published May 17, 2022
The Management Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler... High Unreviewed
CVE-2015-5080 was published May 17, 2022
The portal in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 through FP5, and 6.3.0 before... High Unreviewed
CVE-2015-5003 was published May 17, 2022
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to... High Unreviewed
CVE-2015-1986 was published May 17, 2022
The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0... High Unreviewed
CVE-2015-6547 was published May 17, 2022
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before... High Unreviewed
CVE-2016-0326 was published May 17, 2022
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and... High Unreviewed
CVE-2015-4974 was published May 17, 2022
IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote authenticated users to... High Unreviewed
CVE-2016-2875 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0328 was published May 17, 2022
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and... High Unreviewed
CVE-2016-0236 was published May 17, 2022
IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote... High Unreviewed
CVE-2015-4930 was published May 17, 2022
Corega CG-WLBARGL devices allow remote authenticated users to execute arbitrary commands via... High Unreviewed
CVE-2016-4822 was published May 17, 2022
flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices... High Unreviewed
CVE-2016-2332 was published May 17, 2022
ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 allows remote attackers to... High Unreviewed
CVE-2015-0538 was published May 17, 2022
SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on... High Unreviewed
CVE-2015-7839 was published May 17, 2022
The xmlrpc.cgi Webmin script in IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2... High Unreviewed
CVE-2015-2011 was published May 17, 2022
BitTorrent and uTorrent allow remote attackers to inject command line parameters and execute... High Unreviewed
CVE-2015-5474 was published May 17, 2022
The log-gather implementation in the web administration interface in EMC Isilon OneFS 6.5.x.x... High Unreviewed
CVE-2015-4525 was published May 17, 2022
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute... High Unreviewed
CVE-2015-2208 was published May 17, 2022
During the plaintext phase of the STARTTLS connection setup, protocol commands could have been... High Unreviewed
CVE-2020-15685 was published Dec 22, 2022
The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x through... High Unreviewed
CVE-2014-9277 was published May 17, 2022
Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming... High Unreviewed
CVE-2014-1905 was published May 17, 2022
git_http_controller.rb in the redmine_git_hosting plugin for Redmine allows remote attackers to... High Unreviewed
CVE-2013-4663 was published May 17, 2022
LPAR2RRD ? 4.53 and ? 3.5 has arbitrary command injection on the application server. High Unreviewed
CVE-2014-4982 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database