Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

390 advisories

Loading
Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847... High Unreviewed
CVE-2014-1730 was published May 17, 2022
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and... High Unreviewed
CVE-2016-0985 was published May 17, 2022
Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a... High Unreviewed
CVE-2013-2882 was published May 17, 2022
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... High Unreviewed
CVE-2017-0037 was published May 17, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ... High Unreviewed
CVE-2017-8291 was published May 14, 2022
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion... Critical Unreviewed
CVE-2018-4920 was published May 14, 2022
Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X... High Unreviewed
CVE-2016-1015 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4223 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4224 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... High Unreviewed
CVE-2016-4225 was published May 14, 2022
ChakraCore RCE Vulnerability High
CVE-2016-7201 was published for Microsoft.ChakraCore (NuGet) May 14, 2022
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux,... High Unreviewed
CVE-2012-0752 was published May 14, 2022
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12... High Unreviewed
CVE-2011-0611 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing... High Unreviewed
CVE-2017-15860 was published May 13, 2022
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect... High Unreviewed
CVE-2017-14639 was published May 13, 2022
An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions:... High Unreviewed
CVE-2017-13220 was published May 13, 2022
Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing... Moderate Unreviewed
CVE-2011-2875 was published May 13, 2022
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0... High Unreviewed
CVE-2010-2299 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6214 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6215 was published May 13, 2022
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of... Critical Unreviewed
CVE-2019-10231 was published May 13, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2019-0752 was published May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8384 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8291 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database