GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
184 advisories
Filter by severity
IBM Security Guardium 9.0, 9.1, and 9.5 supports interaction between multiple actors and allows...
High
Unreviewed
CVE-2017-1271
was published
May 17, 2022
An issue was discovered in the software on Vaultek Gun Safe VT20i products. There is no...
High
Unreviewed
CVE-2017-17436
was published
May 14, 2022
In the Procter & Gamble "Oral-B App" (aka com.pg.oralb.oralbapp) application 5.0.0 for Android,...
High
Unreviewed
CVE-2018-5298
was published
May 14, 2022
IBM Security Access Manager Appliance 8.0.0 through 8.0.1.6 and 9.0.0 through 9.0.3.1 uses weaker...
High
Unreviewed
CVE-2017-1473
was published
May 14, 2022
IBM Team Concert (RTC) 5.0, 5.0.1, 5.0.2, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, and 6.0.5 stores...
High
Unreviewed
CVE-2017-1701
was published
May 14, 2022
IBM Security Guardium 10.0, 10.0.1, and 10.1 through 10.1.4 uses weaker than expected...
High
Unreviewed
CVE-2017-1255
was published
May 14, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10...
High
Unreviewed
CVE-2016-4693
was published
May 14, 2022
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. The password encryption...
High
Unreviewed
CVE-2017-13699
was published
May 14, 2022
IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow...
High
Unreviewed
CVE-2018-1648
was published
May 14, 2022
Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining...
High
Unreviewed
CVE-2013-7469
was published
May 14, 2022
Using remote content in encrypted messages can lead to the disclosure of plaintext. This...
High
Unreviewed
CVE-2018-5184
was published
May 14, 2022
System Manager in Avaya Aura before 7.1.2 does not properly use SSL in conjunction with...
High
Unreviewed
CVE-2018-6635
was published
May 13, 2022
Weak Cryptography in PHP-Proxy
High
CVE-2018-19784
was published
for
athlon1600/php-proxy
(Composer)
May 13, 2022
On Samsung NVR devices, remote attackers can read the MD5 password hash of the 'admin' account...
High
Unreviewed
CVE-2017-14262
was published
May 13, 2022
IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 uses weaker than expected...
High
Unreviewed
CVE-2017-1366
was published
May 13, 2022
IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow...
High
Unreviewed
CVE-2017-1695
was published
May 13, 2022
IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through 7.5.2.17, 7.5.1.0 through 7.5.1...
High
Unreviewed
CVE-2018-1665
was published
May 13, 2022
IBM Security Key Lifecycle Manager 3.0 through 3.0.0.2 uses weaker than expected cryptographic...
High
Unreviewed
CVE-2018-1751
was published
May 13, 2022
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 uses weaker...
High
Unreviewed
CVE-2018-1814
was published
May 13, 2022
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance supports...
High
Unreviewed
CVE-2018-1946
was published
May 13, 2022
Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows...
High
Unreviewed
CVE-2017-17543
was published
May 13, 2022
The nsSOCKSSocketInfo::ConnectToProxy function in Mozilla Firefox before 18.0, Firefox ESR 17.x...
High
Unreviewed
CVE-2013-0764
was published
May 13, 2022
controller/fetchpwd.php and controller/doAction.php in Hotels_Server through 2018-11-05 rely on...
High
Unreviewed
CVE-2019-7648
was published
May 13, 2022
An issue was discovered in D-Link 'myDlink Baby App' version 2.04.06. Whenever actions are...
High
Unreviewed
CVE-2018-18767
was published
May 13, 2022
Cloud Foundry Bits Service Release, versions prior to 2.14.0, uses an insecure hashing algorithm...
High
Unreviewed
CVE-2018-15796
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API