Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

162 advisories

Loading
gforge 3.1 and 4.5.14 allows local users to truncate arbitrary files via a symlink attack on... Low Unreviewed
CVE-2007-3921 was published May 1, 2022
CoolKey 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on temporary... Low Unreviewed
CVE-2007-4129 was published May 1, 2022
hugin, as used on various operating systems including SUSE openSUSE 10.2 and 10.3, allows local... Low Unreviewed
CVE-2007-5200 was published May 1, 2022
guilt 0.27 allows local users to overwrite arbitrary files via a symlink attack on a guilt.log.... Low Unreviewed
CVE-2007-5207 was published May 1, 2022
sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary... Low Unreviewed
CVE-2007-6208 was published May 1, 2022
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary... Low Unreviewed
CVE-2007-6595 was published May 1, 2022
Website META Language (WML) 2.0.11 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2008-0666 was published May 1, 2022
wml_backend/p1_ipp/ipp.src in Website META Language (WML) 2.0.11 allows local users to overwrite... Low Unreviewed
CVE-2008-0665 was published May 1, 2022
The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown... Low Unreviewed
CVE-2008-0732 was published May 1, 2022
wyrd 1.4.3b allows local users to overwrite arbitrary files via a symlink attack on the wyrd-tmp.... Low Unreviewed
CVE-2008-0806 was published May 1, 2022
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2008-0883 was published May 1, 2022
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files... Low Unreviewed
CVE-2008-1569 was published May 1, 2022
lib/prefs.tcl in Cecilia 2.0.5 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2008-1832 was published May 1, 2022
The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in... Low Unreviewed
CVE-2008-3699 was published May 2, 2022
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly ... Low Unreviewed
CVE-2008-4579 was published May 2, 2022
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an... Low Unreviewed
CVE-2009-1753 was published May 2, 2022
GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2009-3304 was published May 2, 2022
Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the ... Low Unreviewed
CVE-2009-4193 was published May 2, 2022
vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite... Low Unreviewed
CVE-2009-4454 was published May 2, 2022
Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain... Low Unreviewed
CVE-2009-4664 was published May 2, 2022
The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite... Low Unreviewed
CVE-2009-5007 was published May 2, 2022
The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU... Low Unreviewed
CVE-2009-5079 was published May 2, 2022
The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib... Low Unreviewed
CVE-2009-5080 was published May 2, 2022
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl... Low Unreviewed
CVE-2009-5081 was published May 2, 2022
The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*... Low Unreviewed
CVE-2009-5082 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database