GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,731
Composer 4,237
Erlang 31
GitHub Actions 21
Go 2,004
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,685

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

23,745 advisories

Filter by severity

Sort by

Least recently updated

Siklu EtherHaul devices before 7.4.0 are vulnerable to a remote command execution (RCE)... Critical Unreviewed

CVE-2017-7318 was published May 13, 2022

A flaw was discovered in the file editor of millicore, affecting versions before 3.19.0 and 4.x... Critical Unreviewed

CVE-2017-7552 was published May 13, 2022

Ninka before 1.3.2 might allow remote attackers to obtain sensitive information, manipulate... Critical Unreviewed

CVE-2017-7239 was published May 13, 2022

PEAR HTML_AJAX 0.3.0 through 0.5.7 has a PHP Object Injection Vulnerability in the PHP Serializer... Critical Unreviewed

CVE-2017-5677 was published May 13, 2022

An issue with incorrect ownership model of "privateBrowsing" information exposed through... Critical Unreviewed

CVE-2017-5468 was published May 13, 2022

A Remote Gain Privileged Access vulnerability in HPE Vertica Analytics Platform version v4.1 and... Critical Unreviewed

CVE-2017-5802 was published May 13, 2022

A mechanism to bypass file system access protections in the sandbox using the file system request... Critical Unreviewed

CVE-2017-5456 was published May 13, 2022

A vulnerability in the Intel Deep Learning Training Tool Beta 1 allows a network attacker to... Critical Unreviewed

CVE-2017-5719 was published May 13, 2022

OxygenOS before version 4.0.2, on OnePlus 3 and 3T, has two hidden fastboot oem commands ... Critical Unreviewed

CVE-2017-5626 was published May 13, 2022

Revive Adserver before 4.0.1 allows remote attackers to execute arbitrary code via serialized... Critical Unreviewed

CVE-2017-5830 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5820 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5821 was published May 13, 2022

A vulnerability where WebExtensions can download and attempt to open a file of some non... Critical Unreviewed

CVE-2017-7821 was published May 13, 2022

The Data Warehouse component in NetApp OnCommand Insight before 7.2.3 allows remote attackers to... Critical Unreviewed

CVE-2017-5600 was published May 13, 2022

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1.... Critical Unreviewed

CVE-2017-5619 was published May 13, 2022

HPE LoadRunner before 12.53 Patch 4 and HPE Performance Center before 12.53 Patch 4 allow remote... Critical Unreviewed

CVE-2017-5789 was published May 13, 2022

In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible... Critical Unreviewed

CVE-2017-6182 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5823 was published May 13, 2022

CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation of privileges. The... Critical Unreviewed

CVE-2017-5959 was published May 13, 2022

Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1... Critical Unreviewed

CVE-2017-5738 was published May 13, 2022

An elevation of Privilege vulnerability exists in the Thermal Driver, where a missing bounds... Critical Unreviewed

CVE-2017-6274 was published May 13, 2022

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1,... Critical Unreviewed

CVE-2017-6080 was published May 13, 2022

The Symantec Messaging Gateway can encounter an issue of remote code execution, which describes a... Critical Unreviewed

CVE-2017-6326 was published May 13, 2022

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due... Critical Unreviewed

CVE-2017-8129 was published May 13, 2022

In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text... Critical Unreviewed

CVE-2017-7933 was published May 13, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,745 advisories