GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

117,970 advisories

Filter by severity

Sort by

Least recently updated

The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS... Moderate Unreviewed

CVE-2012-4095 was published May 17, 2022

ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a... Moderate Unreviewed

CVE-2015-8838 was published May 17, 2022

The high-availability service in the Fabric Interconnect component in Cisco Unified Computing... Moderate Unreviewed

CVE-2012-4136 was published May 17, 2022

The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a... Moderate Unreviewed

CVE-2012-4093 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17... Moderate Unreviewed

CVE-2016-0927 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird... Moderate Unreviewed

CVE-2014-2018 was published May 17, 2022

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create... Moderate Unreviewed

CVE-2012-4141 was published May 17, 2022

The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified... Moderate Unreviewed

CVE-2012-4074 was published May 17, 2022

The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different... Moderate Unreviewed

CVE-2013-1194 was published May 17, 2022

Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200,... Moderate Unreviewed

CVE-2016-6901 was published May 17, 2022

Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of service (device reload) via a... Moderate Unreviewed

CVE-2015-6431 was published May 17, 2022

Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs supersede virtual PPP interface... Moderate Unreviewed

CVE-2015-6365 was published May 17, 2022

Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls... Moderate Unreviewed

CVE-2015-6478 was published May 17, 2022

Directory traversal vulnerability in cm/newui/blog/export.jsp in eTouch SamePage Enterprise... Moderate Unreviewed

CVE-2015-2071 was published May 17, 2022

The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0... Moderate Unreviewed

CVE-2015-6425 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in the Easy Social Icons plugin before 1.2.3 for... Moderate Unreviewed

CVE-2015-2084 was published May 17, 2022

Huawei AC6003, AC6005, AC6605, and ACU2 access controllers with software before V200R006C10SPC200... Moderate Unreviewed

CVE-2016-6824 was published May 17, 2022

The BGP implementation in Cisco NX-OS does not properly filter AS paths, which allows remote... Moderate Unreviewed

CVE-2012-4099 was published May 17, 2022

The management interface in the Central Software component in Cisco Unified Computing System (UCS... Moderate Unreviewed

CVE-2012-4092 was published May 17, 2022

Stack-based buffer overflow in the Connect function in the WebGate WebEyeAudio ActiveX control... Moderate Unreviewed

CVE-2015-2093 was published May 17, 2022

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote... Moderate Unreviewed

CVE-2016-7108 was published May 17, 2022

CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to... Moderate Unreviewed

CVE-2016-6839 was published May 17, 2022

The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass... Moderate Unreviewed

CVE-2014-3295 was published May 17, 2022

Cisco WebEx Meeting Server does not properly restrict the content of URLs, which allows remote... Moderate Unreviewed

CVE-2014-3294 was published May 17, 2022

The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an... Moderate Unreviewed

CVE-2012-4088 was published May 17, 2022

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117,970 advisories