GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,929

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

440 advisories

Filter by severity

Sort by

Least recently updated

It was found that the Karaf container used by Red Hat JBoss Fuse 6.x, and Red Hat JBoss A-MQ 6.x,... High Unreviewed

CVE-2016-8648 was published May 13, 2022

The Java implementation of AMF3 deserializers used in Flamingo amf-serializer by Exadel, version... High Unreviewed

CVE-2017-3201 was published May 13, 2022

In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach... High Unreviewed

CVE-2018-12539 was published May 13, 2022

A Deserialization of Untrusted Data issue was discovered in OSIsoft PI Data Archive versions 2017... High Unreviewed

CVE-2018-7529 was published May 13, 2022

The wiki_decode Developer System Helper function in the admin panel in Kaltura before 13.2.0... High Unreviewed

CVE-2017-14141 was published May 13, 2022

The Pickle::Pickle function in base/pickle.cc in Google Chrome before 8.0.552.224 and Chrome OS... High Unreviewed

CVE-2010-4574 was published May 13, 2022

October CMS build 412 is vulnerable to PHP object injection in asset move functionality resulting... High Unreviewed

CVE-2017-1000195 was published May 13, 2022

The sandbox implementation in Google Chrome before 6.0.472.53 does not properly deserialize... High Unreviewed

CVE-2010-3258 was published May 13, 2022

An issue was discovered in CMS Made Simple 2.2.8. In the module DesignManager (in the files... High Unreviewed

CVE-2019-9055 was published May 13, 2022

An issue was discovered in CMS Made Simple 2.2.8. In the module FrontEndUsers (in the file class... High Unreviewed

CVE-2019-9056 was published May 13, 2022

An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to... High Unreviewed

CVE-2019-9057 was published May 13, 2022

An issue was discovered in CMS Made Simple 2.2.8. In the module ModuleManager (in the file action... High Unreviewed

CVE-2019-9061 was published May 13, 2022

A potential Remote Arbitrary Code Execution vulnerability has been identified in Micro Focus'... High Unreviewed

CVE-2018-18589 was published May 13, 2022

An issue was discovered in EasyLogin Pro through 1.3.0. Encryptor.php contains an unserialize... High Unreviewed

CVE-2018-15576 was published May 13, 2022

** DISPUTED ** The xdr_bytes and xdr_string functions in the GNU C Library (aka glibc or libc6) 2... High Unreviewed

CVE-2017-8804 was published May 13, 2022

A serialization vulnerability in Zoho ManageEngine Applications Manager before build 13740 allows... High Unreviewed

CVE-2018-16364 was published May 13, 2022

The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent... High Unreviewed

CVE-2016-4483 was published May 13, 2022

A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state... High Unreviewed

CVE-2018-15686 was published May 13, 2022

A code execution vulnerability exists in ProcessMaker Enterprise Core 3.0.1.7-community. A... High Unreviewed

CVE-2016-9045 was published May 13, 2022

The Booking Calendar plugin for WordPress is vulnerable to PHP Object Injection via the ... High Unreviewed

CVE-2022-1463 was published May 11, 2022

USU Oracle Optimization before 5.17 allows authenticated quantum users to achieve remote code... High Unreviewed

CVE-2022-29936 was published Apr 30, 2022

The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to... High Unreviewed

CVE-2003-0791 was published Apr 29, 2022

A php unserialize vulnerability exists in the Ai-Bolit functionality of CloudLinux Inc Imunify360... High Unreviewed

CVE-2021-21956 was published Apr 15, 2022

A CWE-502: Deserialization of Untrusted Data vulnerability exists which could allow an attacker... High Unreviewed

CVE-2019-6834 was published Apr 14, 2022

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code... High Unreviewed

CVE-2022-22957 was published Apr 14, 2022

Previous 1 2 … 14 15 16 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

440 advisories