Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

304 advisories

Loading
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed
CVE-2021-20854 was published Dec 2, 2021
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed
CVE-2021-20853 was published Dec 2, 2021
nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain sensitive information via the... Moderate Unreviewed
CVE-2004-2732 was published Apr 29, 2022
Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote... Moderate Unreviewed
CVE-2007-4041 was published May 1, 2022
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0... Moderate Unreviewed
CVE-2007-4891 was published May 1, 2022
Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a... Moderate Unreviewed
CVE-2008-1115 was published May 1, 2022
cbrPager before 0.9.17 allows user-assisted remote attackers to execute arbitrary commands via... Moderate Unreviewed
CVE-2008-2575 was published May 1, 2022
Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to... Moderate Unreviewed
CVE-2009-0848 was published May 2, 2022
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users... Moderate Unreviewed
CVE-2009-0854 was published May 2, 2022
The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute... Moderate Unreviewed
CVE-2009-4498 was published May 2, 2022
The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission... Moderate Unreviewed
CVE-2021-30361 was published May 12, 2022
An exploitable code execution vulnerability exists in the firmware update functionality of Yi... Moderate Unreviewed
CVE-2018-3890 was published May 13, 2022
Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an... Moderate Unreviewed
CVE-2019-3913 was published May 13, 2022
A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS... Moderate Unreviewed
CVE-2019-1725 was published May 13, 2022
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... Moderate Unreviewed
CVE-2018-0324 was published May 13, 2022
A vulnerability in certain CLI commands of Cisco Identity Services Engine (ISE) could allow an... Moderate Unreviewed
CVE-2018-0214 was published May 13, 2022
A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series... Moderate Unreviewed
CVE-2018-0122 was published May 13, 2022
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3,... Moderate Unreviewed
CVE-2018-1242 was published May 13, 2022
Grandstream GWN7000 before 1.0.6.32 and GWN7610 before 1.0.8.18 devices allow remote... Moderate Unreviewed
CVE-2019-10657 was published May 13, 2022
The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Privilege Escalation... Moderate Unreviewed
CVE-2018-15726 was published May 13, 2022
A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100... Moderate Unreviewed
CVE-2017-6602 was published May 13, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 allows remote... Moderate Unreviewed
CVE-2010-3752 was published May 14, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote... Moderate Unreviewed
CVE-2010-3753 was published May 14, 2022
/usr/local/cm/bin/pktCap_protectData in Cisco Unified Communications Manager (aka CUCM, formerly... Moderate Unreviewed
CVE-2010-3039 was published May 14, 2022
The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote... Moderate Unreviewed
CVE-2014-8334 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database