GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90 advisories
Filter by severity
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow an authenticated user to send a specially crafted...
Moderate
Unreviewed
CVE-2020-4271
was published
May 24, 2022
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component:...
Moderate
Unreviewed
CVE-2020-2757
was published
May 24, 2022
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component:...
Moderate
Unreviewed
CVE-2020-2756
was published
May 24, 2022
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it...
Moderate
Unreviewed
CVE-2020-0618
was published
May 24, 2022
Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle GraalVM (component: Java...
Moderate
Unreviewed
CVE-2020-2604
was published
May 24, 2022
The Windows component of Centrify Authentication and Privilege Elevation Services 3.4.0, 3.4.1, 3...
Moderate
Unreviewed
CVE-2019-18631
was published
May 24, 2022
In JobStore, there is a mismatched serialization/deserialization for the "battery-not-low" job...
Moderate
Unreviewed
CVE-2019-9373
was published
May 24, 2022
Java Server Pages (JSPs) provided by the SAP NetWeaver Process Integration (SAP_XIESR and...
Moderate
Unreviewed
CVE-2019-0305
was published
May 24, 2022
fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the pickle Python module unsafely...
Moderate
Unreviewed
CVE-2011-2520
was published
May 17, 2022
view_help.php in the backend help system in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4...
Moderate
Unreviewed
CVE-2012-3527
was published
May 17, 2022
It was found that the JMX endpoint of Red Hat JBoss Fuse 6, and Red Hat A-MQ 6 deserializes the...
Moderate
Unreviewed
CVE-2016-8653
was published
May 13, 2022
Red Hat JBoss EAP version 5 is vulnerable to a deserialization of untrusted data in the JMX...
Moderate
Unreviewed
CVE-2016-9585
was published
May 13, 2022
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)...
Moderate
Unreviewed
CVE-2018-15425
was published
May 13, 2022
The SAP EP-RUNTIME component in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to...
Moderate
Unreviewed
CVE-2016-10304
was published
May 13, 2022
PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when register_globals is enabled, allows context...
Moderate
Unreviewed
CVE-2007-1701
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API