Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,210 advisories

Loading
Eval injection vulnerability in tDiary 2.0.3 and 2.1.4.200 61127 allows remote authenticated... Moderate Unreviewed
CVE-2006-6852 was published May 1, 2022
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a... Moderate Unreviewed
CVE-2006-6383 was published May 1, 2022
Sorin Chitu Telnet-FTP Server 1.0 allows remote authenticated users to cause a denial of service ... Moderate Unreviewed
CVE-2006-6241 was published May 1, 2022
VMWare VirtualCenter client 2.x before 2.0.1 Patch 1 (Build 33643) and 1.4.x before 1.4.1 Patch 1... Moderate Unreviewed
CVE-2006-5990 was published May 1, 2022
Hastymail 1.5 and earlier before 20061008 allows remote authenticated users to send arbitrary... Moderate Unreviewed
CVE-2006-5313 was published May 1, 2022
Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows... Moderate Unreviewed
CVE-2006-5265 was published May 1, 2022
Moodle does not properly validate module instance id Moderate
CVE-2006-4936 was published for moodle/moodle (Composer) May 1, 2022
RapDrv.sys in BlackICE PC Protection 3.6.cpn, cpj, cpiE, and possibly 3.6 and earlier, allows... Moderate Unreviewed
CVE-2006-4541 was published May 1, 2022
Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to unvalidated input,... Moderate Unreviewed
CVE-2006-4468 was published May 1, 2022
Joomla! before 1.0.11 does not properly unset variables when the input data includes a numeric... Moderate Unreviewed
CVE-2006-4466 was published May 1, 2022
Mozilla Firefox 1.5.0.6 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2006-4310 was published May 1, 2022
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (crash)... Moderate Unreviewed
CVE-2006-4301 was published May 1, 2022
MySQL before 5.0.25 and 5.1 before 5.1.12 evaluates arguments of suid routines in the security... Moderate Unreviewed
CVE-2006-4227 was published May 1, 2022
OSSP shiela 1.1.5 and earlier allows remote authenticated users to execute arbitrary commands on... Moderate Unreviewed
CVE-2006-3633 was published May 1, 2022
Microsoft Internet Explorer 6.0 does not properly handle Drag and Drop events, which allows... Moderate Unreviewed
CVE-2006-3281 was published May 1, 2022
Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users... Moderate Unreviewed
CVE-2006-3014 was published May 1, 2022
Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and... Moderate Unreviewed
CVE-2006-2894 was published May 1, 2022
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote... Moderate Unreviewed
CVE-2006-2782 was published May 1, 2022
Improper Input Validation in Mortbay Jetty Moderate
CVE-2006-2759 was published for org.mortbay.jetty:jetty (Maven) May 1, 2022
phpBB 2.0.20 does not verify user-specified input variable types before being passed to type... Moderate Unreviewed
CVE-2006-2219 was published May 1, 2022
phpBB 2.0.20 does not properly verify user-specified input variables used as limits to SQL... Moderate Unreviewed
CVE-2006-2220 was published May 1, 2022
The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote attackers to cause a... Moderate Unreviewed
CVE-2006-1957 was published May 1, 2022
Internet Explorer 6 for Windows XP SP2 and earlier allows remote attackers to spoof the address... Moderate Unreviewed
CVE-2006-1626 was published May 1, 2022
Linux kernel before 2.6.13 allows local users to cause a denial of service (crash) via a dio... Moderate Unreviewed
CVE-2006-1528 was published May 1, 2022
The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 and 2.6.17-rc1, and... Moderate Unreviewed
CVE-2006-1522 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database