Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,426
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions... Moderate Unreviewed
CVE-2021-2011 was published May 24, 2022
Smart cards from the Athena SCS manufacturer, based on the Atmel Toolbox 00.03.11.05 and the... Moderate Unreviewed
CVE-2019-15809 was published May 24, 2022
phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain... Moderate Unreviewed
CVE-2010-4481 was published May 17, 2022
error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers... Moderate Unreviewed
CVE-2010-4480 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton function in libraries/common.lib... Moderate Unreviewed
CVE-2010-4329 was published May 17, 2022
Celery local privilege escalation vulnerability Moderate
CVE-2011-4356 was published for celery (pip) May 17, 2022
Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the... Moderate Unreviewed
CVE-2010-2956 was published May 14, 2022
elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x... Moderate Unreviewed
CVE-2010-3847 was published May 14, 2022
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not... High Unreviewed
CVE-2010-3856 was published May 14, 2022
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen... Critical Unreviewed
CVE-2011-1935 was published May 13, 2022
Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x... Moderate Unreviewed
CVE-2011-4930 was published May 13, 2022
Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon... Moderate Unreviewed
CVE-2011-0001 was published May 3, 2022
The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a... Moderate Unreviewed
CVE-2010-0211 was published May 2, 2022
OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call... Moderate Unreviewed
CVE-2010-0212 was published May 2, 2022
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as... Moderate Unreviewed
CVE-2010-0001 was published May 2, 2022
net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the... Moderate Unreviewed
CVE-2007-1592 was published May 1, 2022
Apache Tomcat OS Command Injection vulnerability High
CVE-2019-0232 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Apr 18, 2019
ProTip! Advisories are also available from the GraphQL API