Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,196 advisories

Loading
vcdiff in Emacs 20.7 to 22.1.50, when used with SCCS, allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-1694 was published May 1, 2022
inetd on Sun Solaris 10, when debug logging is enabled, allows local users to write to arbitrary... Moderate Unreviewed
CVE-2008-1684 was published May 1, 2022
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files... Low Unreviewed
CVE-2008-1569 was published May 1, 2022
The prerm script in axyl 2.1.7 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-1417 was published May 1, 2022
GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9 allows... Moderate Unreviewed
CVE-2008-1241 was published May 1, 2022
Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related... Moderate Unreviewed
CVE-2008-1103 was published May 1, 2022
expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows... High Unreviewed
CVE-2008-1078 was published May 1, 2022
w_editeur.c in XWine 1.0.1 for Debian GNU/Linux allows local users to overwrite or print... High Unreviewed
CVE-2008-0930 was published May 1, 2022
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2008-0883 was published May 1, 2022
BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 2, under certain circumstances, can... High Unreviewed
CVE-2008-0870 was published May 1, 2022
wyrd 1.4.3b allows local users to overwrite arbitrary files via a symlink attack on the wyrd-tmp.... Low Unreviewed
CVE-2008-0806 was published May 1, 2022
The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown... Low Unreviewed
CVE-2008-0732 was published May 1, 2022
wml_backend/p1_ipp/ipp.src in Website META Language (WML) 2.0.11 allows local users to overwrite... Low Unreviewed
CVE-2008-0665 was published May 1, 2022
Website META Language (WML) 2.0.11 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2008-0666 was published May 1, 2022
Open redirect vulnerability in htdocs/user.php in XOOPS 2.0.18 allows remote attackers to... Moderate Unreviewed
CVE-2008-0613 was published May 1, 2022
PatchLink Update client for Unix, as used by Novell ZENworks Patch Management Update Agent for... Moderate Unreviewed
CVE-2008-0525 was published May 1, 2022
The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by... Moderate Unreviewed
CVE-2008-0167 was published May 1, 2022
Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers... Moderate Unreviewed
CVE-2008-0163 was published May 1, 2022
Open redirect vulnerability in Menalto Gallery before 2.2.4 allows remote attackers to redirect... Moderate Unreviewed
CVE-2007-6692 was published May 1, 2022
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary... Low Unreviewed
CVE-2007-6595 was published May 1, 2022
sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary... Low Unreviewed
CVE-2007-6208 was published May 1, 2022
Audacity 1.3.2 creates a temporary directory with a predictable name without checking for... Moderate Unreviewed
CVE-2007-6061 was published May 1, 2022
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2007-5940 was published May 1, 2022
The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2007-5839 was published May 1, 2022
vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new... Moderate Unreviewed
CVE-2007-5718 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database