Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,964 advisories

Loading
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8... Moderate Unreviewed
CVE-2006-2341 was published May 1, 2022
A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions... Moderate Unreviewed
CVE-2006-2111 was published May 1, 2022
MAXdev MDPro 1.0.73 and 1.0.72, and possibly other versions before 1.076, allows remote attackers... Moderate Unreviewed
CVE-2006-1677 was published May 1, 2022
NSSecureTextField in AppKit in Apple Mac OS X 10.4.6 does not re-enable secure event input under... Low Unreviewed
CVE-2006-1439 was published May 1, 2022
The Motorola PEBL U6 08.83.76R, the Motorola V600, and possibly the Motorola E398 and other... Moderate Unreviewed
CVE-2006-1367 was published May 1, 2022
Michael Salzer Guestbox 0.6, and other versions before 0.8, allows remote attackers to obtain the... Moderate Unreviewed
CVE-2006-0861 was published May 1, 2022
PyBlosxom before 1.3.2, when running on certain webservers, allows remote attackers to read... Moderate Unreviewed
CVE-2006-0707 was published May 1, 2022
** DISPUTED ** MySQL 5.0.18 allows local users with access to a VIEW to obtain sensitive... Low Unreviewed
CVE-2006-0369 was published May 1, 2022
unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator,... Low Unreviewed
CVE-2006-0353 was published May 1, 2022
TinyPHPForum 3.6 and earlier stores the (1) users/[USERNAME].hash and (2) users/[USERNAME].email... Moderate Unreviewed
CVE-2006-0103 was published May 1, 2022
The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does... Moderate Unreviewed
CVE-2005-4881 was published May 1, 2022
TYPO3 Reveals Sensitive Information via Direct Request to `misc/phpcheck/` High
CVE-2005-4875 was published for typo3/cms (Composer) May 1, 2022
Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for... Low Unreviewed
CVE-2005-4868 was published May 1, 2022
Apache Derby exposes user and password attributes Moderate
CVE-2005-4849 was published for org.apache.derby:derby (Maven) May 1, 2022
Apache Tomcat allows remote attackers to read JSP source files High
CVE-2005-4836 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat Discloses MS-DOS Pathname Moderate
CVE-2005-4703 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
roundcube webmail Alpha, with a default high verbose level ($rcmail_config['debug_level'] = 1),... Moderate Unreviewed
CVE-2005-4368 was published May 1, 2022
Limbo CMS 1.0.4.2 and earlier allows remote attackers to obtain the installation path of the... Moderate Unreviewed
CVE-2005-4320 was published May 1, 2022
phpCOIN 1.2.2 allows remote attackers to obtain the installation path via a direct request to... Moderate Unreviewed
CVE-2005-4214 was published May 1, 2022
Mortbay Jetty Discloses JSP Source Code Moderate
CVE-2005-3747 was published for org.mortbay.jetty:jetty (Maven) May 1, 2022
Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2005-3724 was published May 1, 2022
phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the... Moderate Unreviewed
CVE-2005-3645 was published May 1, 2022
tiki-view_forum_thread.php in TikiWiki 1.9.0 through 1.9.2 allows remote attackers to obtain the... Moderate Unreviewed
CVE-2005-3529 was published May 1, 2022
IBM WebSphere Application Server 5.0.x before 5.02.15, 5.1.x before 5.1.1.8, and 6.x before... Moderate Unreviewed
CVE-2005-3498 was published May 1, 2022
The default configuration of the web server for the Solaris Management Console (SMC) in Solaris 8... Moderate Unreviewed
CVE-2005-3398 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database