Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1... Low Unreviewed
CVE-2009-3486 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1... Low Unreviewed
CVE-2009-3487 was published May 2, 2022
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when... Low Unreviewed
CVE-2009-3432 was published May 2, 2022
Unspecified vulnerability in the PeopleSoft Enterprise HCM (TAM) component in Oracle PeopleSoft... Low Unreviewed
CVE-2009-3409 was published May 2, 2022
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV,... Low Unreviewed
CVE-2009-3413 was published May 2, 2022
Unspecified vulnerability in the RDBMS component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4,... Low Unreviewed
CVE-2009-3410 was published May 2, 2022
Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1... Low Unreviewed
CVE-2009-3412 was published May 2, 2022
Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and... Low Unreviewed
CVE-2009-3406 was published May 2, 2022
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Low Unreviewed
CVE-2009-3402 was published May 2, 2022
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E... Low Unreviewed
CVE-2009-3401 was published May 2, 2022
GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2009-3304 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x before 1... Low Unreviewed
CVE-2009-3300 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Self Service UI (SSUI) in IBM Tivoli Identity... Low Unreviewed
CVE-2009-3262 was published May 2, 2022
vtiger CRM before 5.1.0 allows remote authenticated users to bypass the permissions on the (1)... Low Unreviewed
CVE-2009-3257 was published May 2, 2022
The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x... Low Unreviewed
CVE-2009-3228 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Print (aka Printer, e-mail and PDF... Low Unreviewed
CVE-2009-3210 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the ImageCache module 5.x before 5.x-2.5... Low Unreviewed
CVE-2009-3206 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Date Tools sub-module in the Date module 6.x... Low Unreviewed
CVE-2009-3156 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Calendar module 6.x before 6.x-2.2 for Drupal... Low Unreviewed
CVE-2009-3157 was published May 2, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the... Low Unreviewed
CVE-2009-3094 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the console in Symantec SecurityExpressions Audit and... Low Unreviewed
CVE-2009-3029 was published May 2, 2022
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and earlier stores... Low Unreviewed
CVE-2009-2977 was published May 2, 2022
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2,... Low Unreviewed
CVE-2009-2948 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated... Low Unreviewed
CVE-2009-2919 was published May 2, 2022
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a... Low Unreviewed
CVE-2009-2918 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database