Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
A certain Debian patch to the run scripts for sabre (aka xsabre) 0.2.4b allows local users to... High Unreviewed
CVE-2008-4406 was published May 2, 2022
The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a... High Unreviewed
CVE-2008-4440 was published May 2, 2022
sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4476 was published May 2, 2022
freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a... High Unreviewed
CVE-2008-4474 was published May 2, 2022
alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink... High Unreviewed
CVE-2008-4477 was published May 2, 2022
ibackup 2.27 allows local users to overwrite arbitrary files via a symlink attack on temporary... High Unreviewed
CVE-2008-4475 was published May 2, 2022
qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite... High Unreviewed
CVE-2008-4553 was published May 2, 2022
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly ... Low Unreviewed
CVE-2008-4579 was published May 2, 2022
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify... High Unreviewed
CVE-2008-4580 was published May 2, 2022
CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi... Moderate Unreviewed
CVE-2009-0032 was published May 2, 2022
winetricks before 20081223 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2009-0313 was published May 2, 2022
Apple Safari 3.2.1 (aka AppVer 3.525.27.1) on Windows allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2009-0321 was published May 2, 2022
Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine... Moderate Unreviewed
CVE-2009-0347 was published May 2, 2022
Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2)... Moderate Unreviewed
CVE-2009-0356 was published May 2, 2022
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for... Moderate Unreviewed
CVE-2009-0416 was published May 2, 2022
Open redirect vulnerability in the web interface in the Rockwell Automation ControlLogix 1756... Moderate Unreviewed
CVE-2009-0473 was published May 2, 2022
Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux... Moderate Unreviewed
CVE-2009-0876 was published May 2, 2022
James Stone Tunapie 2.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2009-1253 was published May 2, 2022
iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE)... Moderate Unreviewed
CVE-2009-1297 was published May 2, 2022
The pa_make_secure_dir function in core-util.c in PulseAudio 0.9.10 and 0.9.19 allows local users... Moderate Unreviewed
CVE-2009-1299 was published May 2, 2022
JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a... Moderate Unreviewed
CVE-2009-1526 was published May 2, 2022
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an... Low Unreviewed
CVE-2009-1753 was published May 2, 2022
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2,... Moderate Unreviewed
CVE-2009-1867 was published May 2, 2022
The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise... Moderate Unreviewed
CVE-2009-1893 was published May 2, 2022
Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2009-1962 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database