Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

11,472 advisories

Loading
Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2009-2622 was published May 2, 2022
src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before 1.5.6, 2.0 before 2.0.6, 2.1... Moderate Unreviewed
CVE-2009-2620 was published May 2, 2022
Multiple session fixation vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0.0.6 allow... Moderate Unreviewed
CVE-2009-2583 was published May 2, 2022
RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allow remote attackers to cause a... Moderate Unreviewed
CVE-2009-2534 was published May 2, 2022
rmserver in RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allows remote... Moderate Unreviewed
CVE-2009-2533 was published May 2, 2022
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1,... Moderate Unreviewed
CVE-2009-2516 was published May 2, 2022
The Graphics Device Interface (GDI) in win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP... High Unreviewed
CVE-2009-2513 was published May 2, 2022
Active Directory Federation Services (ADFS) in Microsoft Windows Server 2003 SP2 and Server 2008... High Unreviewed
CVE-2009-2509 was published May 2, 2022
Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote SOCKS5 proxy servers to... Moderate Unreviewed
CVE-2009-2470 was published May 2, 2022
WordPress 2.7.1 places the username of a post's author in an HTML comment, which allows remote... Moderate Unreviewed
CVE-2009-2431 was published May 2, 2022
Tor before 0.2.0.35 allows remote attackers to cause a denial of service (application crash) via... Moderate Unreviewed
CVE-2009-2425 was published May 2, 2022
The CFCharacterSetInitInlineBuffer method in CoreFoundation.dll in Apple Safari 3.2.3 allows... Moderate Unreviewed
CVE-2009-2421 was published May 2, 2022
Apple Safari 3.2.3 does not properly implement the file: protocol handler, which allows remote... Moderate Unreviewed
CVE-2009-2420 was published May 2, 2022
Mozilla Network Security Services (NSS) before 3.12.3, Firefox before 3.0.13, Thunderbird before... Moderate Unreviewed
CVE-2009-2408 was published May 2, 2022
Insecure method vulnerability in Awingsoft Awakening Winds3D Viewer plugin 3.5.0.0, 3.0.0.5, and... High Unreviewed
CVE-2009-2386 was published May 2, 2022
The web interface on the Axesstel MV 410R relies on client-side JavaScript code to validate input... High Unreviewed
CVE-2009-2320 was published May 2, 2022
The Axesstel MV 410R allows remote attackers to cause a denial of service via a flood of SYN... High Unreviewed
CVE-2009-2318 was published May 2, 2022
The ARD-9808 DVR card security camera allows remote attackers to cause a denial of service via a... High Unreviewed
CVE-2009-2305 was published May 2, 2022
The radware AppWall Web Application Firewall (WAF) 1.0.2.6, with Gateway 4.6.0.2, allows remote... High Unreviewed
CVE-2009-2301 was published May 2, 2022
index.php in Aardvark Topsites PHP 5.2.1 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2009-2303 was published May 2, 2022
index.php in Aardvark Topsites PHP 5.2.0 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2009-2304 was published May 2, 2022
PeaZIP 2.6.1, 2.5.1, and earlier on Windows allows user-assisted remote attackers to execute... High Unreviewed
CVE-2009-2261 was published May 2, 2022
The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote... High Unreviewed
CVE-2009-2256 was published May 2, 2022
The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1_parser.c) in ... Moderate Unreviewed
CVE-2009-2185 was published May 2, 2022
Multiple open redirect vulnerabilities in TBDev.NET 01-01-08 allow remote attackers to redirect... Moderate Unreviewed
CVE-2009-2138 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database