Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-5366 was published May 17, 2022
ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files... Moderate Unreviewed
CVE-2008-5367 was published May 17, 2022
sdm-login in sdm-terminal 0.4.0b allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-5372 was published May 17, 2022
mgt-helper in multi-gnome-terminal 1.6.2 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-5143 was published May 17, 2022
tkusr in tkusr 0.82 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-5136 was published May 17, 2022
nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local users to overwrite... Moderate Unreviewed
CVE-2008-5144 was published May 17, 2022
** DISPUTED ** postinst in twiki 4.1.2 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4998 was published May 17, 2022
screenie in screenie 1.30.0 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-5371 was published May 17, 2022
impose in impose+ 0.2 allows local users to overwrite arbitrary files via a symlink attack on (1)... Moderate Unreviewed
CVE-2008-4960 was published May 17, 2022
convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp... Moderate Unreviewed
CVE-2008-4946 was published May 17, 2022
** DISPUTED ** gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4950 was published May 17, 2022
fwb_install in fwbuilder 2.1.19 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-4956 was published May 17, 2022
** DISPUTED ** firehol in firehol 1.256 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-4953 was published May 17, 2022
src/unit_test.c in gpsdrive (aka gpsdrive-scripts) 2.10~pre4 might allow local users to overwrite... High Unreviewed
CVE-2008-5704 was published May 17, 2022
add-accession-numbers in ctn 3.0.6 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-5146 was published May 17, 2022
noip2 in noip2 2.1.7 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-5369 was published May 17, 2022
fwd_check.sh in libncbi6 6.1.20080302 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-5149 was published May 17, 2022
test_parser.py in mayavi 1.5 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-5151 was published May 17, 2022
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point... High Unreviewed
CVE-2019-8452 was published May 24, 2022
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v0.9.8 beta ... High Unreviewed
CVE-2019-12571 was published May 24, 2022
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux... High Unreviewed
CVE-2019-12573 was published May 24, 2022
The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform... Low Unreviewed
CVE-2021-23239 was published May 24, 2022
The chkstat tool in the permissions package followed symlinks before commit... High Unreviewed
CVE-2019-3690 was published May 24, 2022
Apport creates a world writable lock file with root ownership in the world writable /var/lock... Low Unreviewed
CVE-2020-8831 was published May 24, 2022
A link following vulnerability in the scanning function of Trend Micro Apex One and Worry-Free... High Unreviewed
CVE-2022-36336 was published Jul 31, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database