Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,196 advisories

Loading
fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an... Low Unreviewed
CVE-2010-0789 was published May 2, 2022
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4... Moderate Unreviewed
CVE-2010-0787 was published May 2, 2022
Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows local users to delete... Low Unreviewed
CVE-2010-0546 was published May 2, 2022
Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive... Moderate Unreviewed
CVE-2010-0439 was published May 2, 2022
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron)... Low Unreviewed
CVE-2010-0424 was published May 2, 2022
Puppet arbitrary files overwrite via a symlink attack Low
CVE-2010-0156 was published for puppet (RubyGems) May 2, 2022
Bournal before 1.4.1 allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed
CVE-2010-0118 was published May 2, 2022
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl... Low Unreviewed
CVE-2009-5081 was published May 2, 2022
The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib... Low Unreviewed
CVE-2009-5080 was published May 2, 2022
The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*... Low Unreviewed
CVE-2009-5082 was published May 2, 2022
The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU... Low Unreviewed
CVE-2009-5079 was published May 2, 2022
The (1) dshield.conf, (2) mail-buffered.conf, (3) mynetwatchman.conf, and (4) mynetwatchman.conf... Moderate Unreviewed
CVE-2009-5023 was published May 2, 2022
The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite... Low Unreviewed
CVE-2009-5007 was published May 2, 2022
Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain... Low Unreviewed
CVE-2009-4664 was published May 2, 2022
vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite... Low Unreviewed
CVE-2009-4454 was published May 2, 2022
Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the ... Low Unreviewed
CVE-2009-4193 was published May 2, 2022
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain... Moderate Unreviewed
CVE-2009-4135 was published May 2, 2022
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE... Moderate Unreviewed
CVE-2009-4030 was published May 2, 2022
GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2009-3304 was published May 2, 2022
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the... Moderate Unreviewed
CVE-2009-2939 was published May 2, 2022
Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2009-1962 was published May 2, 2022
The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise... Moderate Unreviewed
CVE-2009-1893 was published May 2, 2022
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2,... Moderate Unreviewed
CVE-2009-1867 was published May 2, 2022
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an... Low Unreviewed
CVE-2009-1753 was published May 2, 2022
JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a... Moderate Unreviewed
CVE-2009-1526 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database