Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data... Low Unreviewed
CVE-2009-2911 was published May 2, 2022
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not... Low Unreviewed
CVE-2009-2910 was published May 2, 2022
The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3... Low Unreviewed
CVE-2009-2899 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Alerts list feature in the web interface in... Low Unreviewed
CVE-2009-2898 was published May 2, 2022
Sun Virtual Desktop Infrastructure (VDI) 3.0, when anonymous binding is enabled, does not... Low Unreviewed
CVE-2009-2856 was published May 2, 2022
The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically... Low Unreviewed
CVE-2009-2796 was published May 2, 2022
IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier... Low Unreviewed
CVE-2009-2752 was published May 2, 2022
IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.27, and 7.0 before 7.0.0.7, does not... Low Unreviewed
CVE-2009-2743 was published May 2, 2022
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when... Low Unreviewed
CVE-2009-2712 was published May 2, 2022
The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local... Low Unreviewed
CVE-2009-2691 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x... Low Unreviewed
CVE-2009-2610 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in mt-wizard.cgi in Six Apart Movable Type before 4.261... Low Unreviewed
CVE-2009-2492 was published May 2, 2022
Unspecified vulnerability in the utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when... Low Unreviewed
CVE-2009-2490 was published May 2, 2022
Unspecified vulnerability in the utdmsession program in Sun Ray Server Software (SRSS) 4.0 allows... Low Unreviewed
CVE-2009-2489 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in add_voting.php in KerviNet Forum 1.1 and earlier... Low Unreviewed
CVE-2009-2327 was published May 2, 2022
Race condition in the Sun Lightweight Availability Collection Tool 3.0 on Solaris 7 through 10... Low Unreviewed
CVE-2009-2314 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Cross-Domain Controller (CDC) servlet in Sun Java... Low Unreviewed
CVE-2009-2268 was published May 2, 2022
FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which... Low Unreviewed
CVE-2009-2208 was published May 2, 2022
The MobileMail component in Apple iPhone OS 3.0 and 3.0.1, and iPhone OS 3.0 for iPod touch,... Low Unreviewed
CVE-2009-2207 was published May 2, 2022
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext... Low Unreviewed
CVE-2009-2201 was published May 2, 2022
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of... Low Unreviewed
CVE-2009-2173 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in TorrentTrader Classic 1.09 allow remote... Low Unreviewed
CVE-2009-2156 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in 4images 1.7.7 and earlier allows remote authenticated... Low Unreviewed
CVE-2009-2131 was published May 2, 2022
Unspecified vulnerability in IBM WebSphere Commerce 6.0 Enterprise before 6.0.0.8, when trace is... Low Unreviewed
CVE-2009-2094 was published May 2, 2022
The Web Services functionality in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.25 and... Low Unreviewed
CVE-2009-2087 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database