GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
30 advisories
Filter by severity
SAP NetWeaver 7.0 allows Remote Code Execution and Denial of Service caused by an error in the...
High
Unreviewed
CVE-2011-1517
was published
Apr 22, 2022
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as...
Moderate
Unreviewed
CVE-2010-0001
was published
May 2, 2022
Buffer overflow in Mozilla Firefox 3.6.x before 3.6.14, Thunderbird before 3.1.8, and SeaMonkey...
High
Unreviewed
CVE-2011-0061
was published
May 3, 2022
** DISPUTED ** OpenSSL before 0.9.8l, and 0.9.8m through 1.x, does not properly restrict client...
Moderate
Unreviewed
CVE-2011-1473
was published
May 13, 2022
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and...
High
Unreviewed
CVE-2010-3765
was published
May 17, 2022
The js_InitRandom function in the JavaScript implementation in Mozilla Firefox 3.5.10 through 3.5...
Moderate
Unreviewed
CVE-2010-3399
was published
May 17, 2022
Stack-based buffer overflow in the text-rendering functionality in Mozilla Firefox before 3.5.14...
High
Unreviewed
CVE-2010-3179
was published
May 17, 2022
The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox before 3.5.14 and 3.6.x before...
High
Unreviewed
CVE-2010-3183
was published
May 17, 2022
A certain application-launch script in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11,...
Moderate
Unreviewed
CVE-2010-3182
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox...
Moderate
Unreviewed
CVE-2010-3177
was published
May 17, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x before 3.6.11...
High
Unreviewed
CVE-2010-3175
was published
May 17, 2022
Use-after-free vulnerability in the nsBarProp function in Mozilla Firefox before 3.5.14 and 3.6.x...
High
Unreviewed
CVE-2010-3180
was published
May 17, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.14...
High
Unreviewed
CVE-2010-3176
was published
May 17, 2022
The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird...
High
Unreviewed
CVE-2010-3173
was published
May 17, 2022
Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before...
Moderate
Unreviewed
CVE-2010-3178
was published
May 17, 2022
The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.10 through 3.5...
Moderate
Unreviewed
CVE-2010-3171
was published
May 17, 2022
Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before...
Moderate
Unreviewed
CVE-2010-3170
was published
May 17, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.12 and 3...
High
Unreviewed
CVE-2010-3169
was published
May 17, 2022
Heap-based buffer overflow in the nsTextFrameUtils::TransformText function in Mozilla Firefox...
High
Unreviewed
CVE-2010-3166
was published
May 17, 2022
Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3...
High
Unreviewed
CVE-2010-3168
was published
May 17, 2022
The nsTreeContentView function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
High
Unreviewed
CVE-2010-3167
was published
May 17, 2022
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) implementation in Mozilla...
Moderate
Unreviewed
CVE-2010-2762
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
Moderate
Unreviewed
CVE-2010-2769
was published
May 17, 2022
The normalizeDocument function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
High
Unreviewed
CVE-2010-2766
was published
May 17, 2022
Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3...
Moderate
Unreviewed
CVE-2010-2764
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API