Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

11,469 advisories

Loading
fw_charts.php in the reporting module in the Manager (aka SEPM) component in Symantec Endpoint... High Unreviewed
CVE-2010-0114 was published May 2, 2022
The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices,... High Unreviewed
CVE-2010-0101 was published May 2, 2022
WebKit in Apple Safari before 4.0.5 does not properly validate the cross-origin loading of... Moderate Unreviewed
CVE-2010-0051 was published May 2, 2022
Apple Safari before 4.0.5 on Windows does not properly validate external URL schemes, which... High Unreviewed
CVE-2010-0045 was published May 2, 2022
The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server... Moderate Unreviewed
CVE-2010-0024 was published May 2, 2022
The Hyper-V server implementation in Microsoft Windows Server 2008 Gold, SP2, and R2 on the x64... Moderate Unreviewed
CVE-2010-0026 was published May 2, 2022
The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and... High Unreviewed
CVE-2010-0020 was published May 2, 2022
The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and... High Unreviewed
CVE-2010-0022 was published May 2, 2022
The SMB client implementation in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2... High Unreviewed
CVE-2010-0016 was published May 2, 2022
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2... Low Unreviewed
CVE-2010-0002 was published May 2, 2022
DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8... High Unreviewed
CVE-2009-5147 was published May 2, 2022
The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a... Moderate Unreviewed
CVE-2009-5136 was published May 2, 2022
The Java XML parser in Echo before 2.1.1 and 3.x before 3.0.b6 allows remote attackers to read... Moderate Unreviewed
CVE-2009-5135 was published May 2, 2022
Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into... Low Unreviewed
CVE-2009-5056 was published May 2, 2022
Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period... High Unreviewed
CVE-2009-5038 was published May 2, 2022
Open redirect vulnerability in awredir.pl in AWStats before 6.95 allows remote attackers to... Moderate Unreviewed
CVE-2009-5020 was published May 2, 2022
Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow... High Unreviewed
CVE-2009-4921 was published May 2, 2022
Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allow... High Unreviewed
CVE-2009-4918 was published May 2, 2022
addons/import.php in TalkBack 2.3.14 allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2009-4854 was published May 2, 2022
Deliantra Server before 2.82 allows remote authenticated users to cause a denial of service ... Moderate Unreviewed
CVE-2009-4847 was published May 2, 2022
MySQL Connector/NET before 6.0.4, when using encryption, does not verify SSL certificates during... Moderate Unreviewed
CVE-2009-4833 was published May 2, 2022
The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a... High Unreviewed
CVE-2009-4810 was published May 2, 2022
Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to... Moderate Unreviewed
CVE-2009-4788 was published May 2, 2022
The PayPal Website Payments Standard functionality in the Ubercart module 5.x before 5.x-1.9 and... Moderate Unreviewed
CVE-2009-4771 was published May 2, 2022
Xerver 4.32 allows remote authenticated users to cause a denial of service (daemon crash) via a... Moderate Unreviewed
CVE-2009-4658 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database