Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,946
Erlang
29
GitHub Actions
16
Go
1,734
Maven
4,963
npm
3,493
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10 advisories

Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended... Moderate Unreviewed
CVE-2017-16541 was published May 13, 2022
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows... Moderate Unreviewed
CVE-2017-2595 was published May 13, 2022
Exposure of private information vulnerability in Photo Viewer in Synology Photo Station 6.8.1... Moderate Unreviewed
CVE-2017-16769 was published May 13, 2022
It was found in EAP 7 before 7.0.9 that properties based files of the management and the... Moderate Unreviewed
CVE-2017-12167 was published May 13, 2022
An information exposure vulnerability in default HTTP configuration file in Synology Photo... Moderate Unreviewed
CVE-2017-12080 was published May 13, 2022
admin-cli before versions 3.0.0.alpha25, 2.2.1.cr2 is vulnerable to an EAP feature to download... Moderate Unreviewed
CVE-2016-8627 was published May 13, 2022
An information disclosure vulnerability was found in JBoss Enterprise Application Platform before... Moderate Unreviewed
CVE-2016-7061 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).... Moderate Unreviewed
CVE-2017-3458 was published May 13, 2022
Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to... Moderate Unreviewed
CVE-2016-6311 was published May 17, 2022
Improper Neutralization of CRLF Sequences in Wildfly Undertow Moderate
CVE-2016-4993 was published for org.wildfly:wildfly-undertow (Maven) May 17, 2022
ProTip! Advisories are also available from the GraphQL API