Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,065
Maven
5,000+
npm
3,744
NuGet
668
pip
3,427
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

261,136 advisories

Loading
Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon... High Unreviewed
CVE-2021-1930 was published May 24, 2022
Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers... Moderate Unreviewed
CVE-2022-30731 was published Jun 8, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 14... Moderate Unreviewed
CVE-2022-1783 was published Jun 7, 2022
otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service ... High Unreviewed
CVE-2016-4704 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4257 was published May 17, 2022
Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows... Moderate Unreviewed
CVE-2016-3951 was published May 17, 2022
SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122... High Unreviewed
CVE-2008-6434 was published May 17, 2022
Unspecified vulnerability in YourPlace before 1.0.1 has unknown impact and attack vectors,... High Unreviewed
CVE-2008-6445 was published May 17, 2022
Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the ... Moderate Unreviewed
CVE-2008-6417 was published May 17, 2022
The CGI framework in Kaya 0.4.0 allows remote attackers to inject arbitrary HTTP headers and... Moderate Unreviewed
CVE-2008-6428 was published May 17, 2022
SQL injection vulnerability in the Simple Random Objects (mw_random_objects) extension 1.0.3 and... High Unreviewed
CVE-2008-6460 was published May 17, 2022
internal/telephony/SMSDispatcher.java in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x... Low Unreviewed
CVE-2016-3888 was published May 17, 2022
HPE Performance Center 11.52, 12.00, 12.01, 12.20, and 12.50 allows remote attackers to bypass... High Unreviewed
CVE-2016-4382 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before... Moderate Unreviewed
CVE-2017-2510 was published May 17, 2022
Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute... Critical Unreviewed
CVE-2016-4263 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4262 was published May 17, 2022
Integer overflow in the Region::unflatten function in libs/ui/Region.cpp in mediaserver in... Moderate Unreviewed
CVE-2016-3895 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4261 was published May 17, 2022
Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed
CVE-2016-4258 was published May 17, 2022
Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0... Moderate Unreviewed
CVE-2016-3898 was published May 17, 2022
systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before... High Unreviewed
CVE-2016-3886 was published May 17, 2022
Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed
CVE-2016-3880 was published May 17, 2022
Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute... Critical Unreviewed
CVE-2016-6980 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in refbase before 0.9.5 allows remote attackers to... Moderate Unreviewed
CVE-2008-6400 was published May 17, 2022
Session fixation vulnerability in Edikon phpShop 0.8.1 allows remote attackers to hijack web... Moderate Unreviewed
CVE-2008-6455 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database