GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,242
Composer 4,350
Erlang 31
GitHub Actions 22
Go 2,119
Maven 5,292
npm 3,770
NuGet 680
pip 3,459
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,710

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,167 advisories

Filter by severity

Sort by

Least recently updated

Portmon 1.7 and possibly earlier versions allows local users to read and write arbitrary files... Low Unreviewed

CVE-2003-0448 was published Apr 29, 2022

eldav WebDAV client for Emacs, version 0.7.2 and earlier, allows local users to create or... Low Unreviewed

CVE-2003-0438 was published Apr 29, 2022

Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which... Low Unreviewed

CVE-2003-0381 was published Apr 29, 2022

znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed

CVE-2003-0367 was published Apr 29, 2022

BitchX IRC client 1.0c20cvs and earlier allows attackers to cause a denial of service (core dump)... Low Unreviewed

CVE-2003-0334 was published Apr 29, 2022

Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5... Low Unreviewed

CVE-2003-0279 was published Apr 29, 2022

The ioperm system call in Linux kernel 2.4.20 and earlier does not properly restrict privileges,... Low Unreviewed

CVE-2003-0246 was published Apr 29, 2022

ps2epsi creates insecure temporary files when calling ghostscript, which allows local attackers... Low Unreviewed

CVE-2003-0207 was published Apr 29, 2022

msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary... Low Unreviewed

CVE-2003-0193 was published Apr 29, 2022

psbanner in the LPRng package allows local users to overwrite arbitrary files via a symbolic link... Low Unreviewed

CVE-2003-0136 was published Apr 29, 2022

adb2mhc in the mhc-utils package before 0.25+20010625-7.1 allows local users to overwrite... Low Unreviewed

CVE-2003-0120 was published Apr 29, 2022

The DEC UDK processing feature in the hanterm (hanterm-xf) terminal emulator before 2.0.5 allows... Low Unreviewed

CVE-2003-0079 was published Apr 29, 2022

The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier... Low Unreviewed

CVE-2003-0071 was published Apr 29, 2022

Linux kernel 2.4.10 through 2.4.21-pre4 does not properly handle the O_DIRECT feature, which... Low Unreviewed

CVE-2003-0018 was published Apr 29, 2022

The data collection script for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x... Low Unreviewed

CVE-2003-0012 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode... Low Unreviewed

CVE-2022-29812 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible Low Unreviewed

CVE-2022-29816 was published Apr 29, 2022

In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was... Low Unreviewed

CVE-2022-29820 was published Apr 29, 2022

An insecure data storage vulnerability allows a physical attacker with root privileges to... Low Unreviewed

CVE-2021-25266 was published Apr 28, 2022

IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by... Low Unreviewed

CVE-2012-3341 was published Apr 23, 2022

systemd 37-1 does not properly handle non-existent services, which causes a denial of service ... Low Unreviewed

CVE-2012-1101 was published Apr 23, 2022

Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar. Low Unreviewed

CVE-2012-0844 was published Apr 23, 2022

A cross-site scripting (XSS) vulnerability in Wolf CMS 0.75 and earlier allows remote attackers... Low Unreviewed

CVE-2012-1932 was published Apr 23, 2022

XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess... Low Unreviewed

CVE-2012-1903 was published Apr 23, 2022

Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8... Low Unreviewed

CVE-2012-1500 was published Apr 23, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,167 advisories