Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,196 advisories

Loading
PIL and Pillow Vulnerable to Symlink Attack on Tmpfiles High
CVE-2014-1932 was published for pillow (pip) May 17, 2022
Open-source ARJ archiver 3.10.22 allows remote attackers to conduct directory traversal attacks... Moderate Unreviewed
CVE-2015-0556 was published May 17, 2022
vzctl before 4.9.4 determines the virtual environment (VE) layout based on the presence of root... Low Unreviewed
CVE-2015-6927 was published May 17, 2022
The Hotspot component in OpenJDK8 as packaged in Red Hat Enterprise Linux 6 and 7 allows local... Moderate Unreviewed
CVE-2015-3149 was published May 17, 2022
Unspecified vulnerability in Opera before 9.60 allows remote attackers to cause a denial of... High Unreviewed
CVE-2008-4694 was published May 17, 2022
rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows local users to delete... Moderate Unreviewed
CVE-2008-4832 was published May 17, 2022
writtercontrol in cdcontrol 1.90 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-4944 was published May 17, 2022
aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4938 was published May 17, 2022
arb-common 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4941 was published May 17, 2022
apertium 3.0.7 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/#... Moderate Unreviewed
CVE-2008-4939 was published May 17, 2022
asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4935 was published May 17, 2022
audiolink in audiolink 0.05 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4942 was published May 17, 2022
xmlfile.py in aptoncd 0.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4940 was published May 17, 2022
faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4936 was published May 17, 2022
senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2008-4937 was published May 17, 2022
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary... Low Unreviewed
CVE-2008-4908 was published May 17, 2022
filters/any-UTF8 in konwert 1.8 allows local users to delete arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4964 was published May 17, 2022
gdrae in gdrae 0.1 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-4958 was published May 17, 2022
amlabel-cdrw in cdrw-taper 0.4 might allow local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-4945 was published May 17, 2022
linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4966 was published May 17, 2022
geo-code in gpsdrive-scripts 2.10~pre4 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4959 was published May 17, 2022
dtc 0.29.6 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp... Moderate Unreviewed
CVE-2008-4951 was published May 17, 2022
liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4965 was published May 17, 2022
The (1) rccs and (2) STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-4968 was published May 17, 2022
linuxtrade 3.65 allows local users to overwrite arbitrary files via a symlink attack on the (a) ... Moderate Unreviewed
CVE-2008-4967 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database