Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,890 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.760-RC4b allows remote... Low Unreviewed
CVE-2005-2689 was published May 1, 2022
pwmconfig in LM_sensors before 2.9.1 creates temporary files insecurely, which allows local users... Low Unreviewed
CVE-2005-2672 was published May 1, 2022
masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a... Low Unreviewed
CVE-2005-2663 was published May 1, 2022
Whisper 32 1.16, and possibly earlier versions, stores passwords in plaintext in memory, which... Low Unreviewed
CVE-2005-2664 was published May 1, 2022
apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append... Low Unreviewed
CVE-2005-2660 was published May 1, 2022
Polygen before 1.0.6 generates precompiled grammar objects with world-writable permissions, which... Low Unreviewed
CVE-2005-2656 was published May 1, 2022
The syscall32_setup_pages function in syscall32.c for Linux kernel 2.6.12 and later, on the 64... Low Unreviewed
CVE-2005-2617 was published May 1, 2022
Mozilla Thunderbird 1.0 and Firefox 1.0.6 allows remote attackers to obfuscate URIs via a long... Low Unreviewed
CVE-2005-2602 was published May 1, 2022
Mentor ADSL-FR4II router running firmware 2.00.0111 stores the web administration password in... Low Unreviewed
CVE-2005-2586 was published May 1, 2022
The find_target function in ptrace32.c in the Linux kernel 2.4.x before 2.4.29 does not properly... Low Unreviewed
CVE-2005-2553 was published May 1, 2022
The web server for Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3) uses insecure... Low Unreviewed
CVE-2005-2554 was published May 1, 2022
OpenVPN before 2.0.1, when running in "dev tap" Ethernet bridging mode, allows remote... Low Unreviewed
CVE-2005-2533 was published May 1, 2022
Race condition in OpenVPN before 2.0.1, when --duplicate-cn is not enabled, allows remote... Low Unreviewed
CVE-2005-2534 was published May 1, 2022
Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to... Low Unreviewed
CVE-2005-2527 was published May 1, 2022
Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page... Low Unreviewed
CVE-2005-2517 was published May 1, 2022
The password assistant in Mac OS X 10.4 to 10.4.2, when used to create multiple accounts from the... Low Unreviewed
CVE-2005-2520 was published May 1, 2022
Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote... Low Unreviewed
CVE-2005-2512 was published May 1, 2022
Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is... Low Unreviewed
CVE-2005-2509 was published May 1, 2022
The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a... Low Unreviewed
CVE-2005-2492 was published May 1, 2022
slocate before 2.7 does not properly process very long paths, which allows local users to cause a... Low Unreviewed
CVE-2005-2499 was published May 1, 2022
Unknown vulnerability in Sun McData switches and directors 4300, 4500, 6064, and 6140 before E/OS... Low Unreviewed
CVE-2005-2487 was published May 1, 2022
Kayako liveResponse 2.x, when logging in a user, records the password in plaintext in the URL,... Low Unreviewed
CVE-2005-2462 was published May 1, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6... Low Unreviewed
CVE-2005-2456 was published May 1, 2022
Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on... Low Unreviewed
CVE-2005-2451 was published May 1, 2022
Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files... Low Unreviewed
CVE-2005-2449 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database