Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,455 advisories

Loading
Cross-site scripting (XSS) vulnerability in the administrative page interface in Taxonomy manager... Low Unreviewed
CVE-2009-2079 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Views 6.x before 6.x-2.6, a module for Drupal, allows... Low Unreviewed
CVE-2009-2076 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Nodequeue 5.x before 5.x-2.7 and 6.x before 6.x-2.2,... Low Unreviewed
CVE-2009-2074 was published May 2, 2022
Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service ... Low Unreviewed
CVE-2009-2056 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Administration interface in Cisco Customer... Low Unreviewed
CVE-2009-2048 was published May 2, 2022
smbfs in Sun OpenSolaris snv_84 through snv_110, when default mount permissions are used, allows... Low Unreviewed
CVE-2009-2031 was published May 2, 2022
Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server... Low Unreviewed
CVE-2009-2012 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.5, and possibly earlier, allow... Low Unreviewed
CVE-2009-2006 was published May 2, 2022
Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10... Low Unreviewed
CVE-2009-1991 was published May 2, 2022
Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite... Low Unreviewed
CVE-2009-1986 was published May 2, 2022
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in Oracle... Low Unreviewed
CVE-2009-1990 was published May 2, 2022
Unspecified vulnerability in the Highly Interactive Client component in Siebel Product Suite 7.5... Low Unreviewed
CVE-2009-1981 was published May 2, 2022
Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0... Low Unreviewed
CVE-2009-1972 was published May 2, 2022
Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.3, and... Low Unreviewed
CVE-2009-1971 was published May 2, 2022
Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0... Low Unreviewed
CVE-2009-1969 was published May 2, 2022
The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2... Low Unreviewed
CVE-2009-1961 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Quiz module 5.x, 6.x-2.x before 6.x-2.2, and 6.x... Low Unreviewed
CVE-2009-1942 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in index.template.html in the express-install templates... Low Unreviewed
CVE-2009-1879 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Drupal 5.x before 5.18 and 6.x before 6.12... Low Unreviewed
CVE-2009-1844 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions)... Low Unreviewed
CVE-2009-1823 was published May 2, 2022
SLiM Simple Login Manager 1.3.0 places the X authority magic cookie (mcookie) on the command line... Low Unreviewed
CVE-2009-1756 was published May 2, 2022
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an... Low Unreviewed
CVE-2009-1753 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Feed Block 6.x-1.x before 6.x-1.1, a module for... Low Unreviewed
CVE-2009-1738 was published May 2, 2022
WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of (1)... Low Unreviewed
CVE-2009-1710 was published May 2, 2022
CFNetwork in Apple Safari before 4.0 on Windows does not properly protect the temporary files... Low Unreviewed
CVE-2009-1716 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database