Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,862 advisories

Loading
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when com.tivoli.am.fim... Low Unreviewed
CVE-2009-5084 was published May 2, 2022
The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU... Low Unreviewed
CVE-2009-5079 was published May 2, 2022
IBM Lotus Quickr 8.1 before 8.1.0.15 services for Lotus Domino on AIX allows remote authenticated... Low Unreviewed
CVE-2009-5062 was published May 2, 2022
twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments,... Low Unreviewed
CVE-2009-5066 was published May 2, 2022
Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.14 services for Lotus Domino, when... Low Unreviewed
CVE-2009-5061 was published May 2, 2022
Open Ticket Request System (OTRS) before 2.4.4 grants ticket access on the basis of single-digit... Low Unreviewed
CVE-2009-5055 was published May 2, 2022
Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.5 services for Lotus Domino allows... Low Unreviewed
CVE-2009-5058 was published May 2, 2022
Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.11 services for Lotus Domino might... Low Unreviewed
CVE-2009-5060 was published May 2, 2022
Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.10 services for Lotus Domino might... Low Unreviewed
CVE-2009-5059 was published May 2, 2022
Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into... Low Unreviewed
CVE-2009-5056 was published May 2, 2022
The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite... Low Unreviewed
CVE-2009-5007 was published May 2, 2022
Cisco Secure Desktop (CSD), when used in conjunction with an AnyConnect SSL VPN server, does not... Low Unreviewed
CVE-2009-5008 was published May 2, 2022
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1... Low Unreviewed
CVE-2009-4998 was published May 2, 2022
Commerce extension for TYPO3 vulnerable to Cross-site Scripting Low
CVE-2009-4963 was published for commerceteam/commerce (Composer) May 2, 2022
The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD)... Low Unreviewed
CVE-2009-4901 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Automated Logout module 6.x-1.x before 6.x-1.7... Low Unreviewed
CVE-2009-4829 was published May 2, 2022
Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain... Low Unreviewed
CVE-2009-4664 was published May 2, 2022
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and... Low Unreviewed
CVE-2009-4652 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in editprofile.php in Viscacha 0.8 Gold allow... Low Unreviewed
CVE-2009-4567 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Submitted By module 6.x before 6.x-1.3 for Drupal... Low Unreviewed
CVE-2009-4559 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2... Low Unreviewed
CVE-2009-4557 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Webform module 5.x before 5.x-2.8 and 6.x before... Low Unreviewed
CVE-2009-4532 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Workflow module 5.x before 5.x-2.4 and... Low Unreviewed
CVE-2009-4513 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the OpenSocial Shindig-Integrator module 5.x and 6.x... Low Unreviewed
CVE-2009-4514 was published May 2, 2022
vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite... Low Unreviewed
CVE-2009-4454 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database