Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

12,827 advisories

Loading
The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0... Moderate Unreviewed
CVE-2014-0195 was published May 14, 2022
The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6... Critical Unreviewed
CVE-2016-4544 was published May 14, 2022
Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB... Moderate Unreviewed
CVE-2012-5612 was published May 17, 2022
The SplObjectStorage unserialize implementation in ext/spl/spl_observer.c in PHP before 7.0.12... Critical Unreviewed
CVE-2016-7480 was published May 14, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Sling Moderate
CVE-2013-2254 was published for org.apache.sling:org.apache.sling.api (Maven) May 17, 2022
Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and... Critical Unreviewed
CVE-2016-10160 was published May 14, 2022
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel... High Unreviewed
CVE-2017-2920 was published May 13, 2022
An exploitable stack buffer overflow vulnerability exists in the MQTT packet parsing... Critical Unreviewed
CVE-2017-2894 was published May 13, 2022
An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel... High Unreviewed
CVE-2017-2880 was published May 13, 2022
An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1... High Unreviewed
CVE-2017-2855 was published May 13, 2022
An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment... High Unreviewed
CVE-2017-2862 was published May 13, 2022
An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the... High Unreviewed
CVE-2017-2875 was published May 13, 2022
An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1... High Unreviewed
CVE-2017-2856 was published May 13, 2022
An exploitable buffer overflow vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2830 was published May 13, 2022
The overflow protection in Expat is removed by compilers with certain optimization settings,... High Unreviewed
CVE-2016-4472 was published May 13, 2022
Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X... Critical Unreviewed
CVE-2016-4275 was published May 14, 2022
Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.47 allow... High Unreviewed
CVE-2015-6460 was published May 17, 2022
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of... Critical Unreviewed
CVE-2019-12261 was published May 24, 2022
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There... High Unreviewed
CVE-2019-12263 was published May 24, 2022
Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X... Critical Unreviewed
CVE-2016-4276 was published May 14, 2022
Out of bounds access in WebAudio in Google Chrome prior to 80.0.3987.87 allowed a remote attacker... Moderate Unreviewed
CVE-2020-6388 was published May 24, 2022
In SystemSettingsValidators, there is a possible permanent denial of service due to missing... Moderate Unreviewed
CVE-2021-0338 was published May 24, 2022
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail... High Unreviewed
CVE-2020-1350 was published May 24, 2022
A memory corruption issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2021-1760 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the XML_GetRawEncJpg Wi-Fi command of... High Unreviewed
CVE-2018-4025 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database