Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

262 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2019-13330 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2019-13329 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... High Unreviewed
CVE-2019-8019 was published May 24, 2022
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in... High Unreviewed
CVE-2019-11707 was published May 24, 2022
A flaw in Thunderbird's implementation of iCal causes a type confusion in... High Unreviewed
CVE-2019-11706 was published May 24, 2022
libxslt Type Confusion vulnerability that affects Nokogiri High
CVE-2019-13118 was published for nokogiri (RubyGems) May 24, 2022
Nokogiri Improperly Handles Unexpected Data Type High
CVE-2022-29181 was published for nokogiri (RubyGems) May 23, 2022
agustingianni
Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847... High Unreviewed
CVE-2014-1730 was published May 17, 2022
core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in Google Chrome... High Unreviewed
CVE-2014-1731 was published May 17, 2022
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and... High Unreviewed
CVE-2016-0985 was published May 17, 2022
Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a... High Unreviewed
CVE-2013-2882 was published May 17, 2022
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... High Unreviewed
CVE-2017-0037 was published May 17, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ... High Unreviewed
CVE-2017-8291 was published May 14, 2022
Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X... High Unreviewed
CVE-2016-1015 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4223 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4224 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4225 was published May 14, 2022
ChakraCore RCE Vulnerability High
CVE-2016-7201 was published for Microsoft.ChakraCore (NuGet) May 14, 2022
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux,... High Unreviewed
CVE-2012-0752 was published May 14, 2022
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12... High Unreviewed
CVE-2011-0611 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing... High Unreviewed
CVE-2017-15860 was published May 13, 2022
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect... High Unreviewed
CVE-2017-14639 was published May 13, 2022
An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions:... High Unreviewed
CVE-2017-13220 was published May 13, 2022
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0... High Unreviewed
CVE-2010-2299 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database