GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
332 advisories
Filter by severity
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and...
Moderate
Unreviewed
CVE-2021-20854
was published
Dec 2, 2021
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and...
Moderate
Unreviewed
CVE-2021-20853
was published
Dec 2, 2021
nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain sensitive information via the...
Moderate
Unreviewed
CVE-2004-2732
was published
Apr 29, 2022
Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote...
Moderate
Unreviewed
CVE-2007-4041
was published
May 1, 2022
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0...
Moderate
Unreviewed
CVE-2007-4891
was published
May 1, 2022
Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a...
Moderate
Unreviewed
CVE-2008-1115
was published
May 1, 2022
cbrPager before 0.9.17 allows user-assisted remote attackers to execute arbitrary commands via...
Moderate
Unreviewed
CVE-2008-2575
was published
May 1, 2022
Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to...
Moderate
Unreviewed
CVE-2009-0848
was published
May 2, 2022
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users...
Moderate
Unreviewed
CVE-2009-0854
was published
May 2, 2022
The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2009-4498
was published
May 2, 2022
The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission...
Moderate
Unreviewed
CVE-2021-30361
was published
May 12, 2022
An exploitable code execution vulnerability exists in the firmware update functionality of Yi...
Moderate
Unreviewed
CVE-2018-3890
was published
May 13, 2022
Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an...
Moderate
Unreviewed
CVE-2019-3913
was published
May 13, 2022
A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS...
Moderate
Unreviewed
CVE-2019-1725
was published
May 13, 2022
A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an...
Moderate
Unreviewed
CVE-2018-0324
was published
May 13, 2022
A vulnerability in certain CLI commands of Cisco Identity Services Engine (ISE) could allow an...
Moderate
Unreviewed
CVE-2018-0214
was published
May 13, 2022
A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series...
Moderate
Unreviewed
CVE-2018-0122
was published
May 13, 2022
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3,...
Moderate
Unreviewed
CVE-2018-1242
was published
May 13, 2022
Grandstream GWN7000 before 1.0.6.32 and GWN7610 before 1.0.8.18 devices allow remote...
Moderate
Unreviewed
CVE-2019-10657
was published
May 13, 2022
The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Privilege Escalation...
Moderate
Unreviewed
CVE-2018-15726
was published
May 13, 2022
A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100...
Moderate
Unreviewed
CVE-2017-6602
was published
May 13, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 allows remote...
Moderate
Unreviewed
CVE-2010-3752
was published
May 14, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote...
Moderate
Unreviewed
CVE-2010-3753
was published
May 14, 2022
/usr/local/cm/bin/pktCap_protectData in Cisco Unified Communications Manager (aka CUCM, formerly...
Moderate
Unreviewed
CVE-2010-3039
was published
May 14, 2022
The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote...
Moderate
Unreviewed
CVE-2014-8334
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API