Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

440 advisories

Loading
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to... Moderate Unreviewed
CVE-2007-5805 was published May 3, 2022
BSD pppd allows local users to change the permissions of arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2002-0824 was published May 3, 2022
pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10... Moderate Unreviewed
CVE-2010-0832 was published May 2, 2022
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or... Moderate Unreviewed
CVE-2010-0788 was published May 2, 2022
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4... Moderate Unreviewed
CVE-2010-0787 was published May 2, 2022
Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive... Moderate Unreviewed
CVE-2010-0439 was published May 2, 2022
The (1) dshield.conf, (2) mail-buffered.conf, (3) mynetwatchman.conf, and (4) mynetwatchman.conf... Moderate Unreviewed
CVE-2009-5023 was published May 2, 2022
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain... Moderate Unreviewed
CVE-2009-4135 was published May 2, 2022
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE... Moderate Unreviewed
CVE-2009-4030 was published May 2, 2022
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the... Moderate Unreviewed
CVE-2009-2939 was published May 2, 2022
Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2009-1962 was published May 2, 2022
The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise... Moderate Unreviewed
CVE-2009-1893 was published May 2, 2022
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2,... Moderate Unreviewed
CVE-2009-1867 was published May 2, 2022
JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a... Moderate Unreviewed
CVE-2009-1526 was published May 2, 2022
The pa_make_secure_dir function in core-util.c in PulseAudio 0.9.10 and 0.9.19 allows local users... Moderate Unreviewed
CVE-2009-1299 was published May 2, 2022
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE)... Moderate Unreviewed
CVE-2009-1297 was published May 2, 2022
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2009-1253 was published May 2, 2022
Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux... Moderate Unreviewed
CVE-2009-0876 was published May 2, 2022
Open redirect vulnerability in the web interface in the Rockwell Automation ControlLogix 1756... Moderate Unreviewed
CVE-2009-0473 was published May 2, 2022
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for... Moderate Unreviewed
CVE-2009-0416 was published May 2, 2022
Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2)... Moderate Unreviewed
CVE-2009-0356 was published May 2, 2022
Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine... Moderate Unreviewed
CVE-2009-0347 was published May 2, 2022
Apple Safari 3.2.1 (aka AppVer 3.525.27.1) on Windows allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2009-0321 was published May 2, 2022
winetricks before 20081223 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2009-0313 was published May 2, 2022
CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi... Moderate Unreviewed
CVE-2009-0032 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database