GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,781
Erlang
36
GitHub Actions
29
Go
2,345
Maven
5,000+
npm
3,976
NuGet
719
pip
3,772
Pub
12
RubyGems
923
Rust
980
Swift
38
Unreviewed advisories
All unreviewed
5,000+
4,940 advisories
Filter by severity
Improper input validation in Mort Bay Jetty
High
CVE-2009-4611
was published
for
org.mortbay.jetty:jetty
(Maven)
May 2, 2022
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber...
High
Unreviewed
CVE-2021-1469
was published
May 24, 2022
An improper input validation vulnerability in the TLS certificate generation function allows an...
High
Unreviewed
CVE-2021-44769
was published
Oct 24, 2022
Improper Input Validation in BeanShell
High
CVE-2016-2510
was published
for
org.apache-extras.beanshell:bsh
(Maven)
May 13, 2022
A potential vulnerability due to improper buffer validation in the SMI handler...
High
Unreviewed
CVE-2022-1108
was published
Apr 23, 2022
A potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler in some...
High
Unreviewed
CVE-2022-1107
was published
Apr 23, 2022
Improper Input Validation in Jenkins
High
CVE-2017-1000391
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 14, 2022
Improper Input Validation in Apache Hadoop
High
CVE-2017-3162
was published
for
org.apache.hadoop:hadoop-client
(Maven)
May 13, 2022
Improper Input Validation in k8s.io/ingress-nginx
High
CVE-2021-25745
was published
for
k8s.io/ingress-nginx
(Go)
May 7, 2022
Improper Input Validation in Apache Struts
High
CVE-2016-1181
was published
for
org.apache.struts:struts-core
(Maven)
May 13, 2022
Improper Input Validation in Jenkins
High
CVE-2017-1000394
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 14, 2022
Improper Input Validation Apache Commons Email
High
CVE-2018-1294
was published
for
org.apache.commons:commons-email
(Maven)
May 14, 2022
A security issue was discovered in ingress-nginx where a user that can create or update ingress...
High
Unreviewed
CVE-2021-25746
was published
May 7, 2022
Improper Input Validation in Apache Struts
High
CVE-2015-0899
was published
for
org.apache.struts:struts-core
(Maven)
May 14, 2022
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X...
High
Unreviewed
CVE-2018-4054
was published
May 13, 2022
The Aviatrix OpenVPN client through 2.5.7 on Linux, macOS, and Windows is vulnerable when OpenSSL...
High
Unreviewed
CVE-2020-7224
was published
May 24, 2022
In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before...
High
Unreviewed
CVE-2020-7452
was published
May 24, 2022
Improper Input Validation in Apache Axis2
High
CVE-2010-1632
was published
for
org.apache.axis2.wso2:axis2
(Maven)
May 17, 2022
Improper Input Validation in Apache Kafka
High
CVE-2018-17196
was published
for
org.apache.kafka:kafka
(Maven)
May 24, 2022
Improper Input Validation in Apache Struts
High
CVE-2016-1182
was published
for
org.apache.struts:struts-core
(Maven)
May 13, 2022
Improper Input Validation in Apache Commons Email
High
CVE-2017-9801
was published
for
org.apache.commons:commons-email
(Maven)
May 17, 2022
Improper Input Validation in Drools and jBPM
High
CVE-2014-8125
was published
for
org.drools:drools-core
(Maven)
May 17, 2022
An exploitable denial-of-service vulnerability exists in the XML_GetScreen Wi-Fi command of the...
High
Unreviewed
CVE-2018-4026
was published
May 24, 2022
Improper Input Validation in Apache Qpid AMQP 0-x JMS
High
CVE-2016-4974
was published
for
org.apache.qpid:qpid-jms-client
(Maven)
May 14, 2022
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1...
High
Unreviewed
CVE-2016-1351
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API