GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,426
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+
147 advisories
Filter by severity
Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before...
Moderate
Unreviewed
CVE-2012-6533
was published
May 17, 2022
Integer overflow in the NWFS.SYS kernel driver 4.91.5.8 in Novell Client 4.91 SP5 on Windows XP...
High
Unreviewed
CVE-2013-3697
was published
May 17, 2022
The NICM.SYS kernel driver 3.1.11.0 in Novell Client 4.91 SP5 on Windows XP and Windows Server...
High
Unreviewed
CVE-2013-3956
was published
May 17, 2022
Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2013-6801
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the NTT DATA Smart Sourcing JavaScript module 2003-11...
Moderate
Unreviewed
CVE-2015-7786
was published
May 17, 2022
Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of...
Moderate
Unreviewed
CVE-2013-2003
was published
May 17, 2022
Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before...
Moderate
Unreviewed
CVE-2013-4690
was published
May 17, 2022
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011,...
Moderate
Unreviewed
CVE-2014-2730
was published
May 14, 2022
Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote attackers to read arbitrary files...
Moderate
Unreviewed
CVE-2013-1301
was published
May 14, 2022
Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted...
High
Unreviewed
CVE-2013-1318
was published
May 14, 2022
Integer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2013-1317
was published
May 14, 2022
Microsoft Publisher 2003 SP3 does not properly validate the size of an unspecified array, which...
High
Unreviewed
CVE-2013-1316
was published
May 14, 2022
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel...
High
Unreviewed
CVE-2013-1315
was published
May 14, 2022
Stack-based buffer overflow in Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and...
High
Unreviewed
CVE-2013-1324
was published
May 14, 2022
Buffer overflow in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code...
High
Unreviewed
CVE-2013-1320
was published
May 14, 2022
Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value...
High
Unreviewed
CVE-2013-1321
was published
May 14, 2022
Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items,...
High
Unreviewed
CVE-2013-1323
was published
May 14, 2022
Microsoft Publisher 2003 SP3 does not properly check the return value of an unspecified method,...
High
Unreviewed
CVE-2013-1319
was published
May 14, 2022
Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to execute arbitrary code via...
High
Unreviewed
CVE-2013-1335
was published
May 14, 2022
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute...
High
Unreviewed
CVE-2013-1329
was published
May 14, 2022
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute...
High
Unreviewed
CVE-2013-1327
was published
May 14, 2022
Heap-based buffer overflow in Microsoft Office 2003 SP3 and 2007 SP3 allows remote attackers to...
High
Unreviewed
CVE-2013-1325
was published
May 14, 2022
Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote...
High
Unreviewed
CVE-2013-1322
was published
May 14, 2022
Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2013-1328
was published
May 14, 2022
The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007...
High
Unreviewed
CVE-2013-1330
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API