Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac;... High Unreviewed
CVE-2010-0258 was published May 2, 2022
Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash... High Unreviewed
CVE-2022-30557 was published May 12, 2022
Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure,... High Unreviewed
CVE-2017-11292 was published May 13, 2022
Type confusion in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and... High Unreviewed
CVE-2017-5059 was published May 13, 2022
Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac,... Moderate Unreviewed
CVE-2017-5094 was published May 13, 2022
Type confusion in PDFium in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and... High Unreviewed
CVE-2017-5057 was published May 13, 2022
Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0... High Unreviewed
CVE-2017-5070 was published May 13, 2022
Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and... High Unreviewed
CVE-2017-5108 was published May 13, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0... High Unreviewed
CVE-2017-5116 was published May 13, 2022
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe... High Unreviewed
CVE-2016-4149 was published May 13, 2022
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X... Critical Unreviewed
CVE-2016-6992 was published May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8133 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8229 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in... High Unreviewed
CVE-2018-8279 was published May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8291 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8298 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
ChakraCore RCE Vulnerability High
CVE-2018-8384 was published for Microsoft.ChakraCore (NuGet) May 13, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2019-0752 was published May 13, 2022
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of... Critical Unreviewed
CVE-2019-10231 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6215 was published May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12... High Unreviewed
CVE-2019-6214 was published May 13, 2022
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0... High Unreviewed
CVE-2010-2299 was published May 13, 2022
Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing... Moderate Unreviewed
CVE-2011-2875 was published May 13, 2022
An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions:... High Unreviewed
CVE-2017-13220 was published May 13, 2022
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect... High Unreviewed
CVE-2017-14639 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database