GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,770 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the... Moderate Unreviewed

CVE-2010-0652 was published May 2, 2022

Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet... Moderate Unreviewed

CVE-2010-0653 was published May 2, 2022

WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5,... Moderate Unreviewed

CVE-2010-0651 was published May 2, 2022

Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL... Moderate Unreviewed

CVE-2010-0648 was published May 2, 2022

Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries... Moderate Unreviewed

CVE-2010-0644 was published May 2, 2022

Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all... Moderate Unreviewed

CVE-2010-0643 was published May 2, 2022

Cisco Collaboration Server (CCS) 5 allows remote attackers to read the source code of JHTML files... Moderate Unreviewed

CVE-2010-0642 was published May 2, 2022

The Single Sign-on (SSO) functionality in IBM WebSphere Application Server (WAS) 7.0.0.0 through... Moderate Unreviewed

CVE-2010-0563 was published May 2, 2022

HTTP authentication implementation in Geo++ GNCASTER 1.4.0.7 and earlier allows remote attackers... Moderate Unreviewed

CVE-2010-0551 was published May 2, 2022

Unspecified vulnerability in the Network Controller in Xerox WorkCentre 6400 System Software 060... Moderate Unreviewed

CVE-2010-0549 was published May 2, 2022

Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre... Moderate Unreviewed

CVE-2010-0548 was published May 2, 2022

Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which... Moderate Unreviewed

CVE-2010-0523 was published May 2, 2022

Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted... Moderate Unreviewed

CVE-2010-0494 was published May 2, 2022

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified ... Moderate Unreviewed

CVE-2010-0488 was published May 2, 2022

Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain... Moderate Unreviewed

CVE-2010-0463 was published May 2, 2022

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain... Moderate Unreviewed

CVE-2010-0464 was published May 2, 2022

The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15,... Moderate Unreviewed

CVE-2010-0434 was published May 2, 2022

Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain... Moderate Unreviewed

CVE-2010-0383 was published May 2, 2022

Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, when functioning as a bridge directory... Moderate Unreviewed

CVE-2010-0385 was published May 2, 2022

The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync... Moderate Unreviewed

CVE-2010-0214 was published May 2, 2022

ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory... Moderate Unreviewed

CVE-2010-0042 was published May 2, 2022

ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory... Moderate Unreviewed

CVE-2010-0041 was published May 2, 2022

The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server... Moderate Unreviewed

CVE-2010-0025 was published May 2, 2022

ViewVC before 1.1.3 composes the root listing view without using the authorizer for each root,... Moderate Unreviewed

CVE-2010-0004 was published May 2, 2022

Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by... Moderate Unreviewed

CVE-2010-0009 was published May 2, 2022

Previous 1…246…271 Next

Previous 1 2 … 244 245 246 247 248 … 270 271 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,770 advisories