Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,752
Maven
5,000+
npm
4,357
NuGet
765
pip
4,121
Pub
12
RubyGems
961
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,878 advisories

Loading
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x... Low Unreviewed
CVE-2012-0075 was published May 4, 2022
GoLismero symlink attack Low
CVE-2012-0054 was published for golismero (pip) May 4, 2022
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string... Low Unreviewed
CVE-2012-0042 was published May 4, 2022
The NonManagedConnectionFactory in JBoss Enterprise Application Platform (EAP) 5.1.2 and 5.2.0,... Low Unreviewed
CVE-2012-0034 was published May 4, 2022
Red Hat JBoss Operations Network (JON) before 3.0.1 uses 0777 permissions for the root directory... Low Unreviewed
CVE-2012-0032 was published May 4, 2022
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP... Low Unreviewed
CVE-2012-0021 was published May 4, 2022
Improper authentication in Link to Windows Service prior to version 2.3.04.1 allows attacker to... Low Unreviewed
CVE-2022-28790 was published May 4, 2022
Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to... Low Unreviewed
CVE-2022-28784 was published May 4, 2022
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not properly manage key data in memory... Low Unreviewed
CVE-2011-0016 was published May 3, 2022
The ima_lsm_rule_init function in security/integrity/ima/ima_policy.c in the Linux kernel before... Low Unreviewed
CVE-2011-0006 was published May 3, 2022
pimd 2.1.5 and possibly earlier versions allows user-assisted local users to overwrite arbitrary... Low Unreviewed
CVE-2011-0007 was published May 3, 2022
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local... Low Unreviewed
CVE-2011-0012 was published May 3, 2022
contrib/pdfmark/pdfroff.sh in GNU troff (aka groff) before 1.21 allows local users to overwrite... Low Unreviewed
CVE-2009-5044 was published May 3, 2022
Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2... Low Unreviewed
CVE-2009-4022 was published May 3, 2022
The Common Code Infrastructure component in IBM DB2 8 before FP17, 9.1 before FP7, and 9.5 before... Low Unreviewed
CVE-2009-1905 was published May 3, 2022
The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly... Low Unreviewed
CVE-2009-0591 was published May 3, 2022
Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this... Low Unreviewed
CVE-2008-2937 was published May 3, 2022
The display driver allocattr functions in NetBSD 3.0 through 4.0_BETA2, and NetBSD-current before... Low Unreviewed
CVE-2007-3654 was published May 3, 2022
Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before... Low Unreviewed
CVE-2007-3474 was published May 3, 2022
pam_console does not properly restore ownership for certain console devices when there are... Low Unreviewed
CVE-2007-1716 was published May 3, 2022
The APOP protocol allows remote attackers to guess the first 3 characters of a password via man... Low Unreviewed
CVE-2007-1558 was published May 3, 2022
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.10 and... Low Unreviewed
CVE-2007-0775 was published May 3, 2022
The if_clone_list function in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before... Low Unreviewed
CVE-2006-6657 was published May 3, 2022
Unspecified vulnerability in ptrace in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1... Low Unreviewed
CVE-2006-6656 was published May 3, 2022
The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and... Low Unreviewed
CVE-2006-6653 was published May 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database