Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,967 advisories

Loading
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2... Low Unreviewed
CVE-2009-3554 was published May 2, 2022
Xerver HTTP Server 4.32 allows remote attackers to obtain the source code for a web page via an... Moderate Unreviewed
CVE-2009-3544 was published May 2, 2022
Cisco ACE XML Gateway (AXG) and ACE Web Application Firewall (WAF) before 6.1 allow remote... Moderate Unreviewed
CVE-2009-3457 was published May 2, 2022
WebCoreModule.ashx in RADactive I-Load before 2008.2.5.0 allows remote attackers to obtain... Moderate Unreviewed
CVE-2009-3452 was published May 2, 2022
Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1 allows remote attackers to... Moderate Unreviewed
CVE-2009-3386 was published May 2, 2022
Uebimiau Webmail 3.2.0-2.0 stores sensitive information under the web root with insufficient... Moderate Unreviewed
CVE-2009-3199 was published May 2, 2022
Multiple unspecified vulnerabilities in HP Performance Insight 5.3 on Windows allow attackers to... High Unreviewed
CVE-2009-3097 was published May 2, 2022
The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname... Moderate Unreviewed
CVE-2009-3002 was published May 2, 2022
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does... Moderate Unreviewed
CVE-2009-3001 was published May 2, 2022
The (1) Net.Commerce and (2) Net.Data components in IBM WebSphere Commerce Suite store sensitive... Moderate Unreviewed
CVE-2009-2956 was published May 2, 2022
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not... Low Unreviewed
CVE-2009-2910 was published May 2, 2022
The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3... Low Unreviewed
CVE-2009-2899 was published May 2, 2022
Sun Virtual Desktop Infrastructure (VDI) 3.0, when anonymous binding is enabled, does not... Low Unreviewed
CVE-2009-2856 was published May 2, 2022
The WebKit component in Safari in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod... Moderate Unreviewed
CVE-2009-2797 was published May 2, 2022
The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically... Low Unreviewed
CVE-2009-2796 was published May 2, 2022
XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8,... Moderate Unreviewed
CVE-2009-2711 was published May 2, 2022
The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local... Low Unreviewed
CVE-2009-2691 was published May 2, 2022
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005... High Unreviewed
CVE-2009-2495 was published May 2, 2022
Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, might allow context... High Unreviewed
CVE-2009-2475 was published May 2, 2022
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before... Moderate Unreviewed
CVE-2009-2445 was published May 2, 2022
KerviNet Forum 1.1 and earlier allows remote attackers to obtain sensitive information via a... Moderate Unreviewed
CVE-2009-2329 was published May 2, 2022
CMS Chainuk 1.2 and earlier allows remote attackers to obtain sensitive information via (1) a... Moderate Unreviewed
CVE-2009-2332 was published May 2, 2022
The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to ... High Unreviewed
CVE-2009-2274 was published May 2, 2022
OXID eShop 4.x before 4.1.4-21266, 3.x, and 2.x allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2009-2266 was published May 2, 2022
stardict 3.0.1, when Enable Net Dict is configured, sends the contents of the clipboard to a... Moderate Unreviewed
CVE-2009-2260 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database