Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

493 advisories

Loading
fest.pl in digitaldj 0.7.5 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4948 was published May 17, 2022
mead.pl in fml 4.0.3 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-4954 was published May 17, 2022
screenie in screenie 1.30.0 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-5371 was published May 17, 2022
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-5375 was published May 17, 2022
mkmailpost in newsgate 1.6 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4975 was published May 17, 2022
delqueueask in rccp 0.9 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4980 was published May 17, 2022
getipacctg in rancid 2.3.2~a8 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-4979 was published May 17, 2022
mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to overwrite... Moderate Unreviewed
CVE-2008-5313 was published May 17, 2022
mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite... Moderate Unreviewed
CVE-2008-5312 was published May 17, 2022
jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files... Moderate Unreviewed
CVE-2008-4639 was published May 17, 2022
Fabric vulnerable to symlink attack on tmp files Moderate
CVE-2011-2185 was published for fabric (pip) May 17, 2022
Virtualenv Allows Symlink Attack on /tmp/ Moderate
CVE-2011-4617 was published for virtualenv (pip) May 17, 2022
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to... Moderate Unreviewed
CVE-2011-3616 was published May 17, 2022
The FileUtils.remove_entry_secure method in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330... Moderate Unreviewed
CVE-2011-1004 was published May 17, 2022
sendbug in freebsd-sendpr 3.113+5.3 on Debian GNU/Linux allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-5142 was published May 17, 2022
si_mkbootserver in systemimager-server 3.6.3 allows local users to overwrite arbitrary files via... Moderate Unreviewed
CVE-2008-5156 was published May 17, 2022
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, ... Moderate Unreviewed
CVE-2013-1423 was published May 17, 2022
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb###... Moderate Unreviewed
CVE-2008-5374 was published May 17, 2022
GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary... Moderate Unreviewed
CVE-2013-4169 was published May 17, 2022
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to... Moderate Unreviewed
CVE-2013-1495 was published May 17, 2022
nagios.upgrade_to_v3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5... Moderate Unreviewed
CVE-2013-2029 was published May 17, 2022
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote... Moderate Unreviewed
CVE-2010-4226 was published May 17, 2022
The IPXPING_COMMAND in contrib/check_ipxping.c in Nagios Plugins 1.4.16 allows local users to... Moderate Unreviewed
CVE-2013-4215 was published May 17, 2022
The (1) mkxmltype and (2) mkdtskel scripts in XML-DT before 0.64 allow local users to overwrite... Moderate Unreviewed
CVE-2014-5260 was published May 17, 2022
Improper Link Resolution Before File Access in Apache Hadoop Moderate
CVE-2014-3627 was published for org.apache.hadoop:hadoop-client (Maven) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database