Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,706
Erlang
34
GitHub Actions
28
Go
2,292
Maven
5,000+
npm
3,942
NuGet
708
pip
3,711
Pub
12
RubyGems
919
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+

238 advisories

Loading
closure-util downloads Resources over HTTP High
CVE-2016-10583 was published for closure-util (npm) Feb 18, 2019
libsbml downloads Resources over HTTP High
CVE-2016-10668 was published for libsbml (npm) Feb 18, 2019
libsbmlsim downloads Resources over HTTP High
CVE-2016-10675 was published for libsbmlsim (npm) Feb 18, 2019
sauce-connect downloads Resources over HTTP High
CVE-2016-10599 was published for sauce-connect (npm) Feb 18, 2019
windows-seleniumjar downloads Resources over HTTP High
CVE-2016-10691 was published for windows-seleniumjar (npm) Jul 31, 2018
dwebp-bin downloads Resources over HTTP High
CVE-2016-10633 was published for dwebp-bin (npm) Feb 18, 2019
clang-extra downloads Resources over HTTP High
CVE-2016-10655 was published for clang-extra (npm) Feb 18, 2019
dalek-browser-ie downloads Resources over HTTP High
CVE-2016-10605 was published for dalek-browser-ie (npm) Feb 18, 2019
ibapi downloads Resources over HTTP High
CVE-2016-10593 was published for ibapi (npm) Feb 18, 2019
install-nw downloads Resources over HTTP High
CVE-2016-10566 was published for install-nw (npm) Feb 18, 2019
chromedriver126 downloads Resources over HTTP High
CVE-2016-10609 was published for chromedriver126 (npm) Feb 18, 2019
marionette-socket-host downloads Resources over HTTP High
CVE-2016-10648 was published for marionette-socket-host (npm) Aug 15, 2018
nodeschnaps downloads resources over HTTP High
CVE-2016-10622 was published for nodeschnaps (npm) Feb 18, 2019
hubl-server downloads resources over HTTP High
CVE-2017-16035 was published for hubl-server (npm) Jul 24, 2018
dalek-browser-chrome Downloads Resources over HTTP High
CVE-2016-10604 was published for dalek-browser-chrome (npm) Feb 18, 2019
ikst Downloads Resources over HTTP High
CVE-2017-16041 was published for ikst (npm) Jul 24, 2018
JetBrains IntelliJ IDEA projects created using the Kotlin (JS Client/JVM Server) IDE Template... High Unreviewed
CVE-2019-10103 was published May 24, 2022
In Modem EMM, there is a possible information disclosure due to a missing data encryption. This... High Unreviewed
CVE-2021-40148 was published Jan 5, 2022
Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its... High Unreviewed
CVE-2021-33020 was published Apr 3, 2022
HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured High
CVE-2023-0690 was published for github.com/hashicorp/boundary (Go) Jul 6, 2023
phpMyFAQ has insecure HTTP cookies High
CVE-2022-4409 was published for thorsten/phpmyfaq (Composer) Dec 11, 2022
An issue was discovered on Moxa AWK-3121 1.14 devices. The device by default allows HTTP traffic... High Unreviewed
CVE-2018-10690 was published May 24, 2022
An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a Wi-Fi connection... High Unreviewed
CVE-2018-10694 was published May 24, 2022
During HE deployment via cockpit-ovirt, cockpit-ovirt generates an ansible variable file `/var... High Unreviewed
CVE-2019-10139 was published May 24, 2022
Noise vulnerable to denial of service High
CVE-2021-4239 was published for github.com/flynn/noise (Go) Dec 28, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database