GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,426
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+
17 advisories
Filter by severity
Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions...
Moderate
Unreviewed
CVE-2021-2011
was published
May 24, 2022
Smart cards from the Athena SCS manufacturer, based on the Atmel Toolbox 00.03.11.05 and the...
Moderate
Unreviewed
CVE-2019-15809
was published
May 24, 2022
phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain...
Moderate
Unreviewed
CVE-2010-4481
was published
May 17, 2022
error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers...
Moderate
Unreviewed
CVE-2010-4480
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton function in libraries/common.lib...
Moderate
Unreviewed
CVE-2010-4329
was published
May 17, 2022
Celery local privilege escalation vulnerability
Moderate
CVE-2011-4356
was published
for
celery
(pip)
May 17, 2022
Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the...
Moderate
Unreviewed
CVE-2010-2956
was published
May 14, 2022
elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x...
Moderate
Unreviewed
CVE-2010-3847
was published
May 14, 2022
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not...
High
Unreviewed
CVE-2010-3856
was published
May 14, 2022
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen...
Critical
Unreviewed
CVE-2011-1935
was published
May 13, 2022
Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x...
Moderate
Unreviewed
CVE-2011-4930
was published
May 13, 2022
Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon...
Moderate
Unreviewed
CVE-2011-0001
was published
May 3, 2022
The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a...
Moderate
Unreviewed
CVE-2010-0211
was published
May 2, 2022
OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call...
Moderate
Unreviewed
CVE-2010-0212
was published
May 2, 2022
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as...
Moderate
Unreviewed
CVE-2010-0001
was published
May 2, 2022
net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the...
Moderate
Unreviewed
CVE-2007-1592
was published
May 1, 2022
Apache Tomcat OS Command Injection vulnerability
High
CVE-2019-0232
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Apr 18, 2019
ProTip!
Advisories are also available from the
GraphQL API