GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,855
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,494
Maven 5,932
npm 4,133
NuGet 735
pip 3,944
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,474

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,163 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application... Moderate Unreviewed

CVE-2008-4284 was published May 2, 2022

Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux... Moderate Unreviewed

CVE-2009-0876 was published May 2, 2022

Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack... Moderate Unreviewed

CVE-2009-1962 was published May 2, 2022

The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a... High Unreviewed

CVE-2008-4440 was published May 2, 2022

sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed

CVE-2008-4476 was published May 2, 2022

CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi... Moderate Unreviewed

CVE-2009-0032 was published May 2, 2022

iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE)... Moderate Unreviewed

CVE-2009-1297 was published May 2, 2022

test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed

CVE-2008-3928 was published May 2, 2022

The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary... Moderate Unreviewed

CVE-2008-3946 was published May 2, 2022

alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink... High Unreviewed

CVE-2008-4477 was published May 2, 2022

qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite... High Unreviewed

CVE-2008-4553 was published May 2, 2022

Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2)... Moderate Unreviewed

CVE-2009-0356 was published May 2, 2022

Open redirect vulnerability in the web interface in the Rockwell Automation ControlLogix 1756... Moderate Unreviewed

CVE-2009-0473 was published May 2, 2022

An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can bypass intended... High Unreviewed

CVE-2009-1143 was published Nov 23, 2022

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE... Moderate Unreviewed

CVE-2009-4030 was published May 2, 2022

The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the... Moderate Unreviewed

CVE-2009-2939 was published May 2, 2022

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2,... Moderate Unreviewed

CVE-2009-1867 was published May 2, 2022

Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the ... Low Unreviewed

CVE-2009-4193 was published May 2, 2022

GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed

CVE-2009-3304 was published May 2, 2022

Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain... Low Unreviewed

CVE-2009-4664 was published May 2, 2022

JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a... Moderate Unreviewed

CVE-2009-1526 was published May 2, 2022

Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an... Low Unreviewed

CVE-2009-1753 was published May 2, 2022

vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite... Low Unreviewed

CVE-2009-4454 was published May 2, 2022

The (1) dshield.conf, (2) mail-buffered.conf, (3) mynetwatchman.conf, and (4) mynetwatchman.conf... Moderate Unreviewed

CVE-2009-5023 was published May 2, 2022

The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite... Low Unreviewed

CVE-2009-5007 was published May 2, 2022

Previous 1…17…47 Next

Previous 1 2 … 15 16 17 18 19 … 46 47 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,163 advisories