Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,001 advisories

Loading
A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb... Low Unreviewed
CVE-2019-18901 was published May 24, 2022
The IPXPING_COMMAND in contrib/check_ipxping.c in Nagios Plugins 1.4.16 allows local users to... Moderate Unreviewed
CVE-2013-4215 was published May 17, 2022
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite... Low Unreviewed
CVE-2012-0786 was published May 17, 2022
LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink... Low Unreviewed
CVE-2011-4105 was published May 17, 2022
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote... Moderate Unreviewed
CVE-2010-4226 was published May 17, 2022
The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify... Low Unreviewed
CVE-2014-0027 was published May 17, 2022
The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local... High Unreviewed
CVE-2019-3692 was published May 24, 2022
An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of... Moderate Unreviewed
CVE-2020-14004 was published May 24, 2022
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local... Low Unreviewed
CVE-2013-2142 was published May 17, 2022
dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary... Low Unreviewed
CVE-2011-3153 was published May 17, 2022
An improper link resolution vulnerability in the Palo Alto Networks Cortex XDR agent on Windows... Moderate Unreviewed
CVE-2022-0029 was published Sep 15, 2022
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows... Low Unreviewed
CVE-2013-1444 was published May 17, 2022
GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary... Moderate Unreviewed
CVE-2013-4169 was published May 17, 2022
bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to... Low Unreviewed
CVE-2013-3368 was published May 17, 2022
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to... Moderate Unreviewed
CVE-2013-1495 was published May 17, 2022
Google Chrome OS before 26.0.1410.57 relies on a Pango pango-utils.c read_config implementation... High Unreviewed
CVE-2013-0927 was published May 17, 2022
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, ... Moderate Unreviewed
CVE-2013-1423 was published May 17, 2022
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows... Low Unreviewed
CVE-2012-6348 was published May 17, 2022
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb###... Moderate Unreviewed
CVE-2008-5374 was published May 17, 2022
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is... Low Unreviewed
CVE-2011-4363 was published May 17, 2022
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to... Low Unreviewed
CVE-2010-2431 was published May 17, 2022
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2012-5564 was published May 17, 2022
Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary... Low Unreviewed
CVE-2011-5146 was published May 17, 2022
as31 2.3.1-4 does not seed the random number generator and generates predictable temporary file... Low Unreviewed
CVE-2012-0808 was published May 17, 2022
The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users... Low Unreviewed
CVE-2012-4676 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database