GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,600

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,564 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Open Ticket Request System (OTRS) before 2.3.6 does not properly handle e-mail messages in which... Moderate Unreviewed

CVE-2010-4767 was published May 17, 2022

The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1... Moderate Unreviewed

CVE-2011-0431 was published May 17, 2022

The get_dataroot_image_path function in lib/file.php in Mahara before 1.4.1 does not properly... Moderate Unreviewed

CVE-2011-2772 was published May 17, 2022

VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API... Moderate Unreviewed

CVE-2012-1472 was published May 17, 2022

IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.62 (aka 6.0.0.8-TIV-ITDS-IF0004) does not... Moderate Unreviewed

CVE-2010-4788 was published May 17, 2022

ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote... Moderate Unreviewed

CVE-2011-4311 was published May 17, 2022

The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context... Moderate Unreviewed

CVE-2010-4156 was published May 17, 2022

Open Automation Software OPC Systems.NET before 5.0 allows remote attackers to cause a denial of... Moderate Unreviewed

CVE-2011-4871 was published May 17, 2022

IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2 uses an incomplete SAML 1.x... Moderate Unreviewed

CVE-2008-7299 was published May 17, 2022

IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of... Low Unreviewed

CVE-2010-4548 was published May 17, 2022

acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has... Low Unreviewed

CVE-2011-1159 was published May 17, 2022

opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the... High Unreviewed

CVE-2011-2490 was published May 17, 2022

Open redirect vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote... Moderate Unreviewed

CVE-2011-1538 was published May 17, 2022

Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is used, does not properly... High Unreviewed

CVE-2010-4254 was published May 17, 2022

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled,... Moderate Unreviewed

CVE-2008-7274 was published May 17, 2022

Adobe Shockwave Player before 11.5.9.620 does not properly validate unspecified input data, which... High Unreviewed

CVE-2010-4193 was published May 17, 2022

pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other... Moderate Unreviewed

CVE-2011-2899 was published May 17, 2022

The AgentTicketForward feature in Open Ticket Request System (OTRS) before 2.4.7 does not... Moderate Unreviewed

CVE-2010-4766 was published May 17, 2022

The i386_set_ldt system call in the kernel in Apple Mac OS X before 10.6.7 does not properly... High Unreviewed

CVE-2011-0182 was published May 17, 2022

WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle... Moderate Unreviewed

CVE-2011-0160 was published May 17, 2022

Multiple open redirect vulnerabilities in One Click Orgs before 1.2.3 allow (1) remote attackers... Moderate Unreviewed

CVE-2011-4553 was published May 17, 2022

service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute... High Unreviewed

CVE-2011-3496 was published May 17, 2022

The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context... Moderate Unreviewed

CVE-2011-1154 was published May 17, 2022

One Click Orgs before 1.2.3 allows remote authenticated users to trigger crafted SMTP traffic via... Moderate Unreviewed

CVE-2011-4554 was published May 17, 2022

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allows remote attackers to... Moderate Unreviewed

CVE-2011-4531 was published May 17, 2022

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,564 advisories