Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

114 advisories

Loading
Apache Struts RCE Vulnerability High
CVE-2016-3090 was published for org.apache.struts:struts2-parent (Maven) May 14, 2022
Improper Input Validation in Apache Qpid AMQP 0-x JMS High
CVE-2016-4974 was published for org.apache.qpid:qpid-jms-client (Maven) May 14, 2022
JBoss RESTEasy vulnerable to Improper Input Validation High
CVE-2016-9606 was published for org.jboss.resteasy:resteasy-bom (Maven) May 14, 2022
Apache Struts Code injection due to conversion error High
CVE-2012-0838 was published for org.apache.struts.xwork:xwork-core (Maven) May 14, 2022
sunSUNQ
Improper Input Validation in Apache Spark High
CVE-2018-11804 was published for org.apache.spark:spark-core (Maven) May 14, 2022
Improper Input Validation Apache Commons Email High
CVE-2018-1294 was published for org.apache.commons:commons-email (Maven) May 14, 2022
Improper Input Validation in Jenkins High
CVE-2017-1000394 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
Improper Input Validation in Jenkins High
CVE-2017-1000391 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
Apache Struts RCE Vulnerability High
CVE-2016-0785 was published for org.apache.struts:struts2-core (Maven) May 14, 2022
sunSUNQ
Improper Input Validation in Datomic High
CVE-2018-10054 was published for com.datomic:datomic-free (Maven) May 13, 2022
Improper Input Validation in Apache Struts High
CVE-2016-1181 was published for org.apache.struts:struts-core (Maven) May 13, 2022
Improper Input Validation in Apache Struts High
CVE-2016-1182 was published for org.apache.struts:struts-core (Maven) May 13, 2022
Improper Input Validation in Apache Tomcat High
CVE-2016-6816 was published for org.apache.tomcat:tomcat-coyote (Maven) May 13, 2022
sunSUNQ
Code injection in Apache Struts High
CVE-2013-2251 was published for org.apache.struts:struts2-core (Maven) May 13, 2022
sunSUNQ
Improper Input Validation in BeanShell High
CVE-2016-2510 was published for org.apache-extras.beanshell:bsh (Maven) May 13, 2022
Improper Input Validation in Apache CXF High
CVE-2010-2076 was published for org.apache.cxf:cxf-rt-frontend-jaxrs (Maven) May 13, 2022
Remote web-service operation execution in Apache CXF High
CVE-2012-3451 was published for org.apache.cxf:cxf (Maven) May 13, 2022
sunSUNQ
Improper Input Validation in Apache Hadoop High
CVE-2017-3162 was published for org.apache.hadoop:hadoop-client (Maven) May 13, 2022
Improper Input Validation in Jenkins High
CVE-2018-1999002 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
Improper Input Validation in Jenkins High
CVE-2018-1999001 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
Apache Struts Remote Java Code Execution High
CVE-2012-0391 was published for org.apache.struts.xwork:xwork-core (Maven) May 4, 2022
sunSUNQ
Improper input validation in Mort Bay Jetty High
CVE-2009-4611 was published for org.mortbay.jetty:jetty (Maven) May 2, 2022
Apache Struts vulnerable to Improper Input Validation High
CVE-2006-1546 was published for struts:struts (Maven) May 1, 2022
Improper Input Validation in Apache Struts High
CVE-2006-1547 was published for struts:struts (Maven) May 1, 2022
ballcat-codegen template engine remote code execution injection High
CVE-2022-24881 was published for com.hccake:ballcat-codegen (Maven) Apr 27, 2022
LuckyT0mat0
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database