GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
987 advisories
Filter by severity
DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134...
Low
Unreviewed
CVE-2011-3154
was published
May 17, 2022
base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to...
Low
Unreviewed
CVE-2013-6402
was published
May 17, 2022
lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read...
Low
Unreviewed
CVE-2013-6891
was published
May 17, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb...
Low
Unreviewed
CVE-2019-18901
was published
May 24, 2022
The IPXPING_COMMAND in contrib/check_ipxping.c in Nagios Plugins 1.4.16 allows local users to...
Moderate
Unreviewed
CVE-2013-4215
was published
May 17, 2022
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite...
Low
Unreviewed
CVE-2012-0786
was published
May 17, 2022
LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink...
Low
Unreviewed
CVE-2011-4105
was published
May 17, 2022
The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify...
Low
Unreviewed
CVE-2014-0027
was published
May 17, 2022
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote...
Moderate
Unreviewed
CVE-2010-4226
was published
May 17, 2022
The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local...
High
Unreviewed
CVE-2019-3692
was published
May 24, 2022
An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of...
Moderate
Unreviewed
CVE-2020-14004
was published
May 24, 2022
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local...
Low
Unreviewed
CVE-2013-2142
was published
May 17, 2022
dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary...
Low
Unreviewed
CVE-2011-3153
was published
May 17, 2022
An improper link resolution vulnerability in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2022-0029
was published
Sep 15, 2022
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows...
Low
Unreviewed
CVE-2013-1444
was published
May 17, 2022
GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary...
Moderate
Unreviewed
CVE-2013-4169
was published
May 17, 2022
bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to...
Low
Unreviewed
CVE-2013-3368
was published
May 17, 2022
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to...
Moderate
Unreviewed
CVE-2013-1495
was published
May 17, 2022
Google Chrome OS before 26.0.1410.57 relies on a Pango pango-utils.c read_config implementation...
High
Unreviewed
CVE-2013-0927
was published
May 17, 2022
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, ...
Moderate
Unreviewed
CVE-2013-1423
was published
May 17, 2022
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows...
Low
Unreviewed
CVE-2012-6348
was published
May 17, 2022
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb###...
Moderate
Unreviewed
CVE-2008-5374
was published
May 17, 2022
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is...
Low
Unreviewed
CVE-2011-4363
was published
May 17, 2022
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to...
Low
Unreviewed
CVE-2010-2431
was published
May 17, 2022
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files...
Low
Unreviewed
CVE-2012-5564
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API