Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,426
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion... High Unreviewed
CVE-2016-3455 was published May 17, 2022
wpa_supplicant 0.4.0 through 2.5 does not reject \n and \r characters in passphrase parameters,... High Unreviewed
CVE-2016-4477 was published May 17, 2022
Improper Neutralization of CRLF Sequences in Wildfly Undertow Moderate
CVE-2016-4993 was published for org.wildfly:wildfly-undertow (Maven) May 17, 2022
Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to... Moderate Unreviewed
CVE-2016-6311 was published May 17, 2022
The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2... High Unreviewed
CVE-2016-5406 was published May 17, 2022
The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM... High Unreviewed
CVE-2016-0755 was published May 14, 2022
An information disclosure vulnerability was found in JBoss Enterprise Application Platform before... Moderate Unreviewed
CVE-2016-7061 was published May 13, 2022
admin-cli before versions 3.0.0.alpha25, 2.2.1.cr2 is vulnerable to an EAP feature to download... Moderate Unreviewed
CVE-2016-8627 was published May 13, 2022
Jboss jbossas before versions 5.2.0-23, 6.4.13, 7.0.5 is vulnerable to an unsafe file handling in... High Unreviewed
CVE-2016-8656 was published May 13, 2022
Red Hat Wildfly DoS High
CVE-2016-9589 was published for org.wildfly:wildfly-undertow (Maven) May 13, 2022
Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when... Low Unreviewed
CVE-2015-3455 was published May 13, 2022
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject \n and \r characters... High Unreviewed
CVE-2016-4476 was published May 13, 2022
Apache ActiveMQ Artemis RCE Via Deserialization Gadget Chain High
CVE-2016-4978 was published for org.apache.activemq:artemis-pom (Maven) May 13, 2022
ProTip! Advisories are also available from the GraphQL API