GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,605
Erlang
29
GitHub Actions
16
Go
1,697
Maven
4,936
npm
3,466
NuGet
601
pip
2,974
Pub
10
RubyGems
826
Rust
767
Swift
34
Unreviewed advisories
All unreviewed
5,000+
18 advisories
Filter by severity
The Headway theme before 3.8.9 for WordPress has XSS via the license key field.
Moderate
Unreviewed
CVE-2016-10953
was published
May 24, 2022
Microsoft Edge in Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute...
High
Unreviewed
CVE-2017-8639
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an...
High
Unreviewed
CVE-2017-8655
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an...
High
Unreviewed
CVE-2017-8672
was published
May 17, 2022
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker...
High
Unreviewed
CVE-2017-8640
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to...
High
Unreviewed
CVE-2017-8656
was published
May 17, 2022
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and...
High
Unreviewed
CVE-2017-8641
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an...
High
Unreviewed
CVE-2017-8657
was published
May 17, 2022
Microsoft Edge in Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to...
High
Unreviewed
CVE-2017-8646
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an...
High
Unreviewed
CVE-2017-8671
was published
May 17, 2022
Microsoft Edge in Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to...
High
Unreviewed
CVE-2017-8645
was published
May 17, 2022
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to...
High
Unreviewed
CVE-2017-8670
was published
May 17, 2022
Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the...
High
Unreviewed
CVE-2016-10089
was published
May 17, 2022
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and...
High
Unreviewed
CVE-2017-8635
was published
May 14, 2022
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and...
High
Unreviewed
CVE-2017-8636
was published
May 14, 2022
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver...
High
Unreviewed
CVE-2018-8641
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to...
High
Unreviewed
CVE-2018-8639
was published
May 13, 2022
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when...
High
Unreviewed
CVE-2016-8641
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API