Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,767
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

457 advisories

Loading
The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary... Moderate Unreviewed
CVE-2008-3946 was published May 2, 2022
migrate_aliases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a... Moderate Unreviewed
CVE-2008-3930 was published May 2, 2022
javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-3931 was published May 2, 2022
test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-3928 was published May 2, 2022
src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows local users... Moderate Unreviewed
CVE-2008-3791 was published May 2, 2022
rc.sysinit in initscripts before 8.76.3-1 on Fedora 9 and other Linux platforms allows local... Moderate Unreviewed
CVE-2008-3524 was published May 2, 2022
phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to... Moderate Unreviewed
CVE-2008-3456 was published May 2, 2022
Open redirect vulnerability in claroline/redirector.php in Claroline before 1.8.10 allows remote... Moderate Unreviewed
CVE-2008-3261 was published May 1, 2022
The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the... Moderate Unreviewed
CVE-2008-3216 was published May 1, 2022
opensuse-updater in openSUSE 10.2 allows local users to access arbitrary files via a symlink attack. Moderate Unreviewed
CVE-2008-2389 was published May 1, 2022
uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and possibly other products,... Moderate Unreviewed
CVE-2008-2266 was published May 1, 2022
Open redirect vulnerability in redirect.php in Bitrix Site Manager 6.5 allows remote attackers to... Moderate Unreviewed
CVE-2008-2052 was published May 1, 2022
vcdiff in Emacs 20.7 to 22.1.50, when used with SCCS, allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-1694 was published May 1, 2022
The prerm script in axyl 2.1.7 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-1417 was published May 1, 2022
GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9 allows... Moderate Unreviewed
CVE-2008-1241 was published May 1, 2022
Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related... Moderate Unreviewed
CVE-2008-1103 was published May 1, 2022
Open redirect vulnerability in htdocs/user.php in XOOPS 2.0.18 allows remote attackers to... Moderate Unreviewed
CVE-2008-0613 was published May 1, 2022
PatchLink Update client for Unix, as used by Novell ZENworks Patch Management Update Agent for... Moderate Unreviewed
CVE-2008-0525 was published May 1, 2022
The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by... Moderate Unreviewed
CVE-2008-0167 was published May 1, 2022
Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers... Moderate Unreviewed
CVE-2008-0163 was published May 1, 2022
Open redirect vulnerability in Menalto Gallery before 2.2.4 allows remote attackers to redirect... Moderate Unreviewed
CVE-2007-6692 was published May 1, 2022
Audacity 1.3.2 creates a temporary directory with a predictable name without checking for... Moderate Unreviewed
CVE-2007-6061 was published May 1, 2022
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2007-5940 was published May 1, 2022
The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary... Moderate Unreviewed
CVE-2007-5839 was published May 1, 2022
vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new... Moderate Unreviewed
CVE-2007-5718 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database