GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
244 advisories
Filter by severity
In Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.8, Dell EMC Solutions...
Critical
Unreviewed
CVE-2018-1183
was published
May 14, 2022
Improper Restriction of XML External Entity Reference in Apache NiFi
Critical
CVE-2018-1309
was published
for
org.apache.nifi:nifi-standard-processors
(Maven)
May 14, 2022
XML external entity (XXE) vulnerability in api/rest/status in SearchBlox 8.6.7 allows remote...
Critical
Unreviewed
CVE-2018-11586
was published
May 14, 2022
The Java implementation of AMF3 deserializers used by WebORB for Java by Midnight Coders, version...
Critical
Unreviewed
CVE-2017-3208
was published
May 14, 2022
ONOS ONOS controller version 1.13.1 and earlier contains a XML External Entity (XXE)...
Critical
Unreviewed
CVE-2018-1000616
was published
May 14, 2022
ONOS ONOS Controller version 1.13.1 and earlier contains a XML External Entity (XXE)...
Critical
Unreviewed
CVE-2018-1000614
was published
May 14, 2022
XML External Entity (XXE) vulnerability in the web service in Dialogic PowerMedia XMS before 3.5...
Critical
Unreviewed
CVE-2018-11640
was published
May 14, 2022
PHPOffice Common Improper Restriction of XML External Entity Reference
Critical
CVE-2018-14065
was published
for
phpoffice/common
(Composer)
May 14, 2022
OCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing the use of external...
Critical
Unreviewed
CVE-2018-14473
was published
May 14, 2022
XML External Entity (XXE) vulnerability in Milton Webdav before 2.7.0.3.
Critical
Unreviewed
CVE-2015-7326
was published
May 14, 2022
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
Critical
Unreviewed
CVE-2015-7241
was published
May 14, 2022
Improper Restriction of XML External Entity Reference in Apache ActiveMQ
Critical
CVE-2015-3208
was published
for
org.apache.activemq:activemq-client
(Maven)
May 14, 2022
In Universal Media Server (UMS) 7.1.0, the XML parsing engine for SSDP/UPnP functionality is...
Critical
Unreviewed
CVE-2018-13416
was published
May 14, 2022
In Plex Media Server 1.13.2.5154, the XML parsing engine for SSDP/UPnP functionality is...
Critical
Unreviewed
CVE-2018-13415
was published
May 14, 2022
In Vuze Bittorrent Client 5.7.6.0, the XML parsing engine for SSDP/UPnP functionality is...
Critical
Unreviewed
CVE-2018-13417
was published
May 14, 2022
JabRef version <=4.3.1 contains a XML External Entity (XXE) vulnerability in MsBibImporter XML...
Critical
Unreviewed
CVE-2018-1000652
was published
May 14, 2022
Stroom version <5.4.5 contains a XML External Entity (XXE) vulnerability in XML Parser that can...
Critical
Unreviewed
CVE-2018-1000651
was published
May 14, 2022
An XML External Entity (XXE) vulnerability exists in HTML Form Entry 3.7.0, as distributed in...
Critical
Unreviewed
CVE-2018-16521
was published
May 14, 2022
An XML External Entity (XXE) vulnerability exists in iWay Data Quality Suite Web Console 10.6.1...
Critical
Unreviewed
CVE-2018-17411
was published
May 14, 2022
Accusoft PrizmDoc HTML5 Document Viewer before 13.5 contains an XML external entity (XXE)...
Critical
Unreviewed
CVE-2018-15805
was published
May 14, 2022
autopsy version <= 4.9.0 contains a XML External Entity (XXE) vulnerability in CaseMetadata XML...
Critical
Unreviewed
CVE-2018-1000838
was published
May 14, 2022
K9Mail version <= v5.600 contains a XML External Entity (XXE) vulnerability in WebDAV response...
Critical
Unreviewed
CVE-2018-1000831
was published
May 14, 2022
runelite version <= runelite-parent-1.4.23 contains a XML External Entity (XXE) vulnerability in...
Critical
Unreviewed
CVE-2018-1000834
was published
May 14, 2022
XR3Player version <= V3.124 contains a XML External Entity (XXE) vulnerability in Playlist parser...
Critical
Unreviewed
CVE-2018-1000830
was published
May 14, 2022
MicroMathematics version before commit 5c05ac8 contains a XML External Entity (XXE) vulnerability...
Critical
Unreviewed
CVE-2018-1000821
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API