GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,393

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,964 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel.... High Unreviewed

CVE-2022-1353 was published Apr 30, 2022

Elcomplus SmartPTT SCADA Server is vulnerable to an unauthenticated user can request various... Critical Unreviewed

CVE-2021-43938 was published Apr 30, 2022

Elcomplus SmartPTT SCADA Server web application does not, or cannot, sufficiently verify whether... High Unreviewed

CVE-2021-43937 was published Apr 30, 2022

Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows... Moderate Unreviewed

CVE-2004-2766 was published Apr 29, 2022

viewreport.pl in NetIQ WebTrends Reporting Center Enterprise Edition 6.1a allows remote attackers... Moderate Unreviewed

CVE-2004-2748 was published Apr 29, 2022

The default configuration of BEA WebLogic Server and Express 8.1 SP2 and earlier, 7.0 SP4 and... Moderate Unreviewed

CVE-2004-2320 was published Apr 29, 2022

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive... Moderate Unreviewed

CVE-2004-1923 was published Apr 29, 2022

Oracle 10g Database Server, when installed with a password that contains an exclamation point ("!... Moderate Unreviewed

CVE-2004-1367 was published Apr 29, 2022

Mailman Sensitive Information Disclosure Moderate

CVE-2004-0412 was published for mailman (pip) Apr 29, 2022

ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid... Moderate Unreviewed

CVE-2003-1555 was published Apr 29, 2022

The undocumented TRACK method in Microsoft Internet Information Services (IIS) 5.0 returns the... Moderate Unreviewed

CVE-2003-1567 was published Apr 29, 2022

Microsoft Internet Explorer 5.22, and other 5 through 6 SP1 versions, sends Referer headers... Moderate Unreviewed

CVE-2003-1559 was published Apr 29, 2022

Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which... Moderate Unreviewed

CVE-2003-1560 was published Apr 29, 2022

Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:... Moderate Unreviewed

CVE-2003-1561 was published Apr 29, 2022

Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under... Moderate Unreviewed

CVE-2003-1553 was published Apr 29, 2022

XOOPS 2.0, and possibly earlier versions, allows remote attackers to obtain sensitive information... Moderate Unreviewed

CVE-2003-1550 was published Apr 29, 2022

WF-Chat 1.0 Beta stores sensitive information under the web root with insufficient access control... Moderate Unreviewed

CVE-2003-1540 was published Apr 29, 2022

MyABraCaDaWeb 1.0.2 and earlier allows remote attackers to obtain sensitive information via an... Moderate Unreviewed

CVE-2003-1548 was published Apr 29, 2022

PHP-Nuke 7.0 allows remote attackers to obtain the installation path via certain characters such... Moderate Unreviewed

CVE-2003-1526 was published Apr 29, 2022

Justice Guestbook 1.3 allows remote attackers to obtain the full installation path via a direct... Moderate Unreviewed

CVE-2003-1535 was published Apr 29, 2022

cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an... Moderate Unreviewed

CVE-2003-1517 was published Apr 29, 2022

Phorum 3.4 through 3.4.2 allows remote attackers to obtain the full path of the web server via an... Moderate Unreviewed

CVE-2003-1486 was published Apr 29, 2022

The Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full... Moderate Unreviewed

CVE-2003-1468 was published Apr 29, 2022

The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option... Moderate Unreviewed

CVE-2003-1469 was published Apr 29, 2022

CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request... Moderate Unreviewed

CVE-2003-1481 was published Apr 29, 2022

Previous 1…381…399 Next

Previous 1 2 … 379 380 381 382 383 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,964 advisories