GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,770 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1)... Moderate Unreviewed

CVE-2009-4298 was published May 2, 2022

PowerPhlogger 2.2.5 allows remote attackers to obtain sensitive information via a direct request... Moderate Unreviewed

CVE-2009-4254 was published May 2, 2022

The process function in data/class/pages/admin/customer/LC_Page_Admin_Customer_SearchCustomer.php... Moderate Unreviewed

CVE-2009-4236 was published May 2, 2022

CutePHP CuteNews 1.4.6 and UTF-8 CuteNews before 8b allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2009-4175 was published May 2, 2022

WP-Cumulus Plug-in 1.20 for WordPress, and possibly other versions, allows remote attackers to... Moderate Unreviewed

CVE-2009-4170 was published May 2, 2022

TYPO3 Simple Download-System with Counter and Categories Vulnerable to Information Disclosure Moderate

CVE-2009-4160 was published for jweiland/kk-downloader (Composer) May 2, 2022

The install wizard in DotNetNuke 4.0 through 5.1.4 does not prevent anonymous users from... Moderate Unreviewed

CVE-2009-4109 was published May 2, 2022

The printing functionality in Microsoft Internet Explorer 8 allows remote attackers to discover a... Moderate Unreviewed

CVE-2009-4073 was published May 2, 2022

Joomla! before 1.5.15 allows remote attackers to read an extension's XML file, and thereby obtain... Moderate Unreviewed

CVE-2009-3946 was published May 2, 2022

RunCMS 2M1, when running with certain error_reporting levels, allows remote attackers to obtain... Moderate Unreviewed

CVE-2009-3815 was published May 2, 2022

phpBMS 0.96 allows remote attackers to obtain sensitive information via a direct request to (1)... Moderate Unreviewed

CVE-2009-3756 was published May 2, 2022

Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.3, 1.6.0.x before 1.6.0.17, and 1.6... Moderate Unreviewed

CVE-2009-3727 was published May 2, 2022

InterVations NaviCOPA Web Server 3.01 allows remote attackers to obtain the source code for a web... Moderate Unreviewed

CVE-2009-3646 was published May 2, 2022

TYPO3 Backend Discloses Encryption Key Moderate

CVE-2009-3628 was published for typo3/cms-backend (Composer) May 2, 2022

HUBScript 1.0 allows remote attackers to obtain configuration information via a direct request to... Moderate Unreviewed

CVE-2009-3600 was published May 2, 2022

Xerver HTTP Server 4.32 allows remote attackers to obtain the source code for a web page via an... Moderate Unreviewed

CVE-2009-3544 was published May 2, 2022

Cisco ACE XML Gateway (AXG) and ACE Web Application Firewall (WAF) before 6.1 allow remote... Moderate Unreviewed

CVE-2009-3457 was published May 2, 2022

WebCoreModule.ashx in RADactive I-Load before 2008.2.5.0 allows remote attackers to obtain... Moderate Unreviewed

CVE-2009-3452 was published May 2, 2022

Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1 allows remote attackers to... Moderate Unreviewed

CVE-2009-3386 was published May 2, 2022

Uebimiau Webmail 3.2.0-2.0 stores sensitive information under the web root with insufficient... Moderate Unreviewed

CVE-2009-3199 was published May 2, 2022

The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname... Moderate Unreviewed

CVE-2009-3002 was published May 2, 2022

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does... Moderate Unreviewed

CVE-2009-3001 was published May 2, 2022

The (1) Net.Commerce and (2) Net.Data components in IBM WebSphere Commerce Suite store sensitive... Moderate Unreviewed

CVE-2009-2956 was published May 2, 2022

The WebKit component in Safari in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod... Moderate Unreviewed

CVE-2009-2797 was published May 2, 2022

XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8,... Moderate Unreviewed

CVE-2009-2711 was published May 2, 2022

Previous 1…248…271 Next

Previous 1 2 … 246 247 248 249 250 … 270 271 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,770 advisories