Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,561 advisories

Loading
The SMB client implementation in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2... High Unreviewed
CVE-2010-0016 was published May 2, 2022
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2... Low Unreviewed
CVE-2010-0002 was published May 2, 2022
DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8... High Unreviewed
CVE-2009-5147 was published May 2, 2022
The Java XML parser in Echo before 2.1.1 and 3.x before 3.0.b6 allows remote attackers to read... Moderate Unreviewed
CVE-2009-5135 was published May 2, 2022
The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a... Moderate Unreviewed
CVE-2009-5136 was published May 2, 2022
Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into... Low Unreviewed
CVE-2009-5056 was published May 2, 2022
Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period... High Unreviewed
CVE-2009-5038 was published May 2, 2022
Open redirect vulnerability in awredir.pl in AWStats before 6.95 allows remote attackers to... Moderate Unreviewed
CVE-2009-5020 was published May 2, 2022
Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow... High Unreviewed
CVE-2009-4921 was published May 2, 2022
Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow... High Unreviewed
CVE-2009-4918 was published May 2, 2022
addons/import.php in TalkBack 2.3.14 allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2009-4854 was published May 2, 2022
Deliantra Server before 2.82 allows remote authenticated users to cause a denial of service ... Moderate Unreviewed
CVE-2009-4847 was published May 2, 2022
MySQL Connector/NET before 6.0.4, when using encryption, does not verify SSL certificates during... Moderate Unreviewed
CVE-2009-4833 was published May 2, 2022
The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a... High Unreviewed
CVE-2009-4810 was published May 2, 2022
Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to... Moderate Unreviewed
CVE-2009-4788 was published May 2, 2022
The PayPal Website Payments Standard functionality in the Ubercart module 5.x before 5.x-1.9 and... Moderate Unreviewed
CVE-2009-4771 was published May 2, 2022
Xerver 4.32 allows remote authenticated users to cause a denial of service (daemon crash) via a... Moderate Unreviewed
CVE-2009-4658 was published May 2, 2022
Improper input validation in Mort Bay Jetty High
CVE-2009-4611 was published for org.mortbay.jetty:jetty (Maven) May 2, 2022
globepersonnel_login.asp in Logoshows BBS 2.0 allows remote attackers to bypass authentication... High Unreviewed
CVE-2009-4546 was published May 2, 2022
drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not... High Unreviewed
CVE-2009-4537 was published May 2, 2022
Yaws 1.85 writes data to a log file without sanitizing non-printable characters, which might... Moderate Unreviewed
CVE-2009-4495 was published May 2, 2022
mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which... Moderate Unreviewed
CVE-2009-4490 was published May 2, 2022
Boa 0.94.14rc21 writes data to a log file without sanitizing non-printable characters, which... Moderate Unreviewed
CVE-2009-4496 was published May 2, 2022
** DISPUTED ** Varnish 2.0.6 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4488 was published May 2, 2022
header.c in Cherokee before 0.99.32 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4489 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database