Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,196 advisories

Loading
** DISPUTED ** firehol in firehol 1.256 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4953 was published May 17, 2022
** DISPUTED ** gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4950 was published May 17, 2022
freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4955 was published May 17, 2022
bulmages-servers 0.11.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4943 was published May 17, 2022
convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp... Moderate Unreviewed
CVE-2008-4946 was published May 17, 2022
gpsdrive (aka gpsdrive-scripts) 2.09 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-5380 was published May 17, 2022
gpsdrive (aka gpsdrive-scripts) 2.10~pre4 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-5703 was published May 17, 2022
dhis-dummy-log-engine in dhis-server 5.3 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4947 was published May 17, 2022
mead.pl in fml 4.0.3 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-4954 was published May 17, 2022
impose in impose+ 0.2 allows local users to overwrite arbitrary files via a symlink attack on (1)... Moderate Unreviewed
CVE-2008-4960 was published May 17, 2022
fest.pl in digitaldj 0.7.5 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4948 was published May 17, 2022
screenie in screenie 1.30.0 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-5371 was published May 17, 2022
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-5375 was published May 17, 2022
mkmailpost in newsgate 1.6 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4975 was published May 17, 2022
delqueueask in rccp 0.9 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4980 was published May 17, 2022
getipacctg in rancid 2.3.2~a8 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-4979 was published May 17, 2022
The make_lockdir_name function in policy.c in pmount 0.9.18 allow local users to overwrite... Low Unreviewed
CVE-2010-2192 was published May 17, 2022
GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a... Low Unreviewed
CVE-2010-2056 was published May 17, 2022
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2010-2794 was published May 17, 2022
The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp,... Low Unreviewed
CVE-2010-4173 was published May 17, 2022
mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to overwrite... Moderate Unreviewed
CVE-2008-5313 was published May 17, 2022
mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite... Moderate Unreviewed
CVE-2008-5312 was published May 17, 2022
jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files... Moderate Unreviewed
CVE-2008-4639 was published May 17, 2022
Fabric vulnerable to symlink attack on tmp files Moderate
CVE-2011-2185 was published for fabric (pip) May 17, 2022
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink... Low Unreviewed
CVE-2011-3204 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database