GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
The following SIEMENS branded IP Camera Models CCMW3025, CVMW3025-IR, CFMW3025 prior to version 1...
Critical
Unreviewed
CVE-2016-9155
was published
May 17, 2022
Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite ...
Critical
Unreviewed
CVE-2016-8325
was published
May 17, 2022
MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow attackers to...
Critical
Unreviewed
CVE-2016-9412
was published
May 17, 2022
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 uses an inadequate account lockout setting that...
Critical
Unreviewed
CVE-2016-6095
was published
May 17, 2022
include/functions_installer.inc.php in Serendipity through 2.0.5 is vulnerable to File Inclusion...
Critical
Unreviewed
CVE-2016-10082
was published
May 17, 2022
IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to...
Critical
Unreviewed
CVE-2016-9005
was published
May 17, 2022
IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate...
Critical
Unreviewed
CVE-2016-5964
was published
May 17, 2022
The file scanning mechanism of JFilterInput::isFileSafe() in Joomla! CMS before 3.6.5 does not...
Critical
Unreviewed
CVE-2016-9836
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1117
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1040
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1044
was published
May 17, 2022
A remote code execution vulnerability in the Qualcomm crypto driver in Android before 2016-11-05...
Critical
Unreviewed
CVE-2016-6725
was published
May 17, 2022
Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.7 and...
Critical
Unreviewed
CVE-2016-5580
was published
May 17, 2022
Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before...
Critical
Unreviewed
CVE-2016-5700
was published
May 17, 2022
The server in HP Release Control 9.13, 9.20, and 9.21 allows remote attackers to execute...
Critical
Unreviewed
CVE-2016-1999
was published
May 17, 2022
A vulnerability, which was classified as critical, has been found in SourceCodester Garage...
Critical
Unreviewed
CVE-2022-2578
was published
Jul 30, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1038
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1042
was published
May 17, 2022
Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006...
Critical
Unreviewed
CVE-2016-1041
was published
May 17, 2022
The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x...
Critical
Unreviewed
CVE-2015-6552
was published
May 17, 2022
F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1...
Critical
Unreviewed
CVE-2016-5745
was published
May 17, 2022
bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2,...
Critical
Unreviewed
CVE-2015-6550
was published
May 17, 2022
The multi-tenant database container feature in SAP HANA does not properly encrypt communications,...
Critical
Unreviewed
CVE-2016-6150
was published
May 17, 2022
Unspecified vulnerability in the Oracle Advanced Supply Chain Planning component in Oracle Supply...
Critical
Unreviewed
CVE-2016-5599
was published
May 17, 2022
The AdminUI in HPE Operations Manager (OM) before 9.21.130 on Linux, Unix, and Solaris allows...
Critical
Unreviewed
CVE-2016-4373
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API