Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

322 advisories

Loading
cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple... Low Unreviewed
CVE-2017-18392 was published May 24, 2022
cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442). Low Unreviewed
CVE-2018-20893 was published May 24, 2022
cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation... Low Unreviewed
CVE-2018-20897 was published May 24, 2022
cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409). Low Unreviewed
CVE-2018-20873 was published May 24, 2022
An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the... Low Unreviewed
CVE-2018-10947 was published May 24, 2022
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65... Low Unreviewed
CVE-2019-0094 was published May 24, 2022
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique... Low Unreviewed
CVE-2014-8178 was published May 17, 2022
The DRDA Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to... Low Unreviewed
CVE-2010-3732 was published May 17, 2022
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to... Low Unreviewed
CVE-2008-4640 was published May 17, 2022
JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2... Low Unreviewed
CVE-2010-2474 was published May 17, 2022
** DISPUTED ** The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows... Low Unreviewed
CVE-2008-7258 was published May 17, 2022
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of... Low Unreviewed
CVE-2010-4548 was published May 17, 2022
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run... Low Unreviewed
CVE-2010-3862 was published May 17, 2022
IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino does not properly handle URLs that... Low Unreviewed
CVE-2008-7286 was published May 17, 2022
Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS... Low Unreviewed
CVE-2011-1068 was published May 17, 2022
acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has... Low Unreviewed
CVE-2011-1159 was published May 17, 2022
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x... Low Unreviewed
CVE-2011-4415 was published May 17, 2022
The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool ... Low Unreviewed
CVE-2011-2503 was published May 17, 2022
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7... Low Unreviewed
CVE-2010-4819 was published May 17, 2022
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel... Low Unreviewed
CVE-2012-2669 was published May 17, 2022
Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID... Low Unreviewed
CVE-2013-0963 was published May 17, 2022
The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6... Low Unreviewed
CVE-2013-1648 was published May 17, 2022
drivers/hid/hid-sensor-hub.c in the Human Interface Device (HID) subsystem in the Linux kernel... Low Unreviewed
CVE-2013-2898 was published May 17, 2022
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for... Low Unreviewed
CVE-2013-4354 was published May 17, 2022
The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in... Low Unreviewed
CVE-2013-4558 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database