Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,564 advisories

Loading
Yaws 1.85 writes data to a log file without sanitizing non-printable characters, which might... Moderate Unreviewed
CVE-2009-4495 was published May 2, 2022
** DISPUTED ** Varnish 2.0.6 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4488 was published May 2, 2022
thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might... Moderate Unreviewed
CVE-2009-4491 was published May 2, 2022
header.c in Cherokee before 0.99.32 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4489 was published May 2, 2022
Orion Application Server 2.0.7 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4493 was published May 2, 2022
AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which... Moderate Unreviewed
CVE-2009-4494 was published May 2, 2022
misc.php in DeluxeBB 1.3 allows remote attackers to register accounts without a valid email... Moderate Unreviewed
CVE-2009-4467 was published May 2, 2022
Microsoft Internet Information Services (IIS), when used in conjunction with unspecified third... Moderate Unreviewed
CVE-2009-4445 was published May 2, 2022
AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions... High Unreviewed
CVE-2009-4372 was published May 2, 2022
extras/curltest.php in Zen Cart 1.3.8 and 1.3.8a, and possibly other versions, allows remote... Moderate Unreviewed
CVE-2009-4321 was published May 2, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise... High Unreviewed
CVE-2009-4272 was published May 2, 2022
Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, 0.5.3, and earlier allow... Moderate Unreviewed
CVE-2009-4224 was published May 2, 2022
The loadContentFromCookie function in core/Cookie.php in Piwik before 0.5 does not validate... High Unreviewed
CVE-2009-4137 was published May 2, 2022
kl1.sys in Kaspersky Anti-Virus 2010 9.0.0.463, and possibly other versions before 9.0.0.736,... Moderate Unreviewed
CVE-2009-4114 was published May 2, 2022
Unrestricted file upload vulnerability in admintools/editpage-2.php in Agoko CMS 0.4 and earlier... High Unreviewed
CVE-2009-4106 was published May 2, 2022
Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1 and earlier... Moderate Unreviewed
CVE-2009-4098 was published May 2, 2022
TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (crash) by... Low Unreviewed
CVE-2009-4105 was published May 2, 2022
Yoono extension before 6.1.1 for Firefox performs certain operations with chrome privileges,... High Unreviewed
CVE-2009-4100 was published May 2, 2022
infoRSS 1.1.4.2 and earlier extension for Firefox performs certain operations with chrome... High Unreviewed
CVE-2009-4101 was published May 2, 2022
Sage 1.4.3 and earlier extension for Firefox performs certain operations with chrome privileges,... High Unreviewed
CVE-2009-4102 was published May 2, 2022
Unrestricted file upload vulnerability in ajax/addComment.php in telepark.wiki 2.4.23 and earlier... High Unreviewed
CVE-2009-4090 was published May 2, 2022
CRLF injection vulnerability in Xerver HTTP Server 4.31 and 4.32 allows remote attackers to... Moderate Unreviewed
CVE-2009-4086 was published May 2, 2022
Home FTP Server 1.10.1.139 allows remote attackers to cause a denial of service (daemon outage)... Moderate Unreviewed
CVE-2009-4051 was published May 2, 2022
The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in... High Unreviewed
CVE-2009-4031 was published May 2, 2022
The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x... Moderate Unreviewed
CVE-2009-4028 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database