GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,628
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,643
Maven 6,107
npm 4,268
NuGet 760
pip 4,062
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,133

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,846 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier,... Moderate Unreviewed

CVE-2006-3561 was published May 1, 2022

V3 Chat allows remote attackers to obtain the installation path via (1) an invalid id parameter... Low Unreviewed

CVE-2006-3365 was published May 1, 2022

Net Portal Dynamic System (NPDS) 5.10 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2006-2950 was published May 1, 2022

Internet Explorer 6 allows user-assisted remote attackers to read arbitrary files by tricking a... Moderate Unreviewed

CVE-2006-2900 was published May 1, 2022

Mozilla Suite 1.7.13, Mozilla Firefox 1.5.0.3 and possibly other versions before before 1.8.0,... Moderate Unreviewed

CVE-2006-2613 was published May 1, 2022

index.php in Destiney Links Script 2.1.2 allows remote attackers to obtain the installation path... Moderate Unreviewed

CVE-2006-2535 was published May 1, 2022

Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to conduct... Moderate Unreviewed

CVE-2006-2384 was published May 1, 2022

NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional... Moderate Unreviewed

CVE-2006-2356 was published May 1, 2022

The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8... Moderate Unreviewed

CVE-2006-2341 was published May 1, 2022

A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions... Moderate Unreviewed

CVE-2006-2111 was published May 1, 2022

MAXdev MDPro 1.0.73 and 1.0.72, and possibly other versions before 1.076, allows remote attackers... Moderate Unreviewed

CVE-2006-1677 was published May 1, 2022

NSSecureTextField in AppKit in Apple Mac OS X 10.4.6 does not re-enable secure event input under... Low Unreviewed

CVE-2006-1439 was published May 1, 2022

The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly the Motorola E398 and other... Moderate Unreviewed

CVE-2006-1367 was published May 1, 2022

Michael Salzer Guestbox 0.6, and other versions before 0.8, allows remote attackers to obtain the... Moderate Unreviewed

CVE-2006-0861 was published May 1, 2022

PyBlosxom before 1.3.2, when running on certain webservers, allows remote attackers to read... Moderate Unreviewed

CVE-2006-0707 was published May 1, 2022

** DISPUTED ** MySQL 5.0.18 allows local users with access to a VIEW to obtain sensitive... Low Unreviewed

CVE-2006-0369 was published May 1, 2022

unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator,... Low Unreviewed

CVE-2006-0353 was published May 1, 2022

TinyPHPForum 3.6 and earlier stores the (1) users/[USERNAME].hash and (2) users/[USERNAME].email... Moderate Unreviewed

CVE-2006-0103 was published May 1, 2022

The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does... Moderate Unreviewed

CVE-2005-4881 was published May 1, 2022

Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for... Low Unreviewed

CVE-2005-4868 was published May 1, 2022

roundcube webmail Alpha, with a default high verbose level ($rcmail_config['debug_level'] = 1),... Moderate Unreviewed

CVE-2005-4368 was published May 1, 2022

Limbo CMS 1.0.4.2 and earlier allows remote attackers to obtain the installation path of the... Moderate Unreviewed

CVE-2005-4320 was published May 1, 2022

phpCOIN 1.2.2 allows remote attackers to obtain the installation path via a direct request to... Moderate Unreviewed

CVE-2005-4214 was published May 1, 2022

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2005-3724 was published May 1, 2022

phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the... Moderate Unreviewed

CVE-2005-3645 was published May 1, 2022

Previous 1…344…354 Next

Previous 1 2 … 342 343 344 345 346 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,846 advisories