GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed ... High Unreviewed

CVE-2002-2397 was published Apr 30, 2022

Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote... High Unreviewed

CVE-2002-2279 was published Apr 30, 2022

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users... Moderate Unreviewed

CVE-2002-0563 was published Apr 30, 2022

An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to... Low Unreviewed

CVE-2002-0507 was published Apr 30, 2022

SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1... Moderate Unreviewed

CVE-2001-1585 was published Apr 30, 2022

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute... High Unreviewed

CVE-2001-0537 was published Apr 30, 2022

Windows NT does not properly download a system policy if the domain user logs into the domain... High Unreviewed

CVE-1999-0987 was published Apr 30, 2022

Windows NT Terminal Server performs extra work when a client opens a new connection but before it... Moderate Unreviewed

CVE-1999-0680 was published Apr 30, 2022

In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank... High Unreviewed

CVE-1999-0366 was published Apr 30, 2022

USU Oracle Optimization before 5.17.5 lacks Polkit authentication, which allows smartcollector... High Unreviewed

CVE-2022-29934 was published Apr 30, 2022

Polar HelpDesk 3.0 allows remote attackers to bypass authentication by setting the UserId and... Moderate Unreviewed

CVE-2004-2736 was published Apr 29, 2022

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with... High Unreviewed

CVE-2004-2734 was published Apr 29, 2022

LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server... High Unreviewed

CVE-2004-2724 was published Apr 29, 2022

edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain... High Unreviewed

CVE-2004-2715 was published Apr 29, 2022

Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user... High Unreviewed

CVE-2004-2182 was published Apr 29, 2022

The default installation of Cisco voice products, when running the IBM Director Agent on IBM... High Unreviewed

CVE-2004-1760 was published Apr 29, 2022

The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1... Low Unreviewed

CVE-2003-1570 was published Apr 29, 2022

TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with... High Unreviewed

CVE-2003-1574 was published Apr 29, 2022

upload.php in Truegalerie 1.0 allows remote attackers to read arbitrary files by specifying the... Moderate Unreviewed

CVE-2003-1489 was published Apr 29, 2022

Netbus 1.5 through 1.7 allows more than one client to be connected at the same time, but only... Moderate Unreviewed

CVE-2003-1475 was published Apr 29, 2022

The web administration page for the Ericsson HM220dp ADSL modem does not require authentication,... High Unreviewed

CVE-2003-1442 was published Apr 29, 2022

Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows... Moderate Unreviewed

CVE-2003-1433 was published Apr 29, 2022

login_ldap 3.1 and 3.2 allows remote attackers to initiate unauthenticated bind requests if (1)... Moderate Unreviewed

CVE-2003-1434 was published Apr 29, 2022

Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door... High Unreviewed

CVE-2003-1343 was published Apr 29, 2022

Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and... High Unreviewed

CVE-2003-0216 was published Apr 29, 2022

Previous 1…129…137 Next

Previous 1 2 … 127 128 129 130 131 … 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,423 advisories