Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

162 advisories

Loading
GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink... Low Unreviewed
CVE-2005-3349 was published May 1, 2022
Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to... Low Unreviewed
CVE-2005-2527 was published May 1, 2022
The (1) kantiword (kantiword.sh) and (2) gantiword (gantiword.sh) scripts in antiword 0.35 and... Low Unreviewed
CVE-2005-3126 was published May 1, 2022
The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user... Low Unreviewed
CVE-2001-1593 was published Apr 30, 2022
fetchmailconf in fetchmail before 5.7.4 allows local users to overwrite files of other users via... Low Unreviewed
CVE-2001-1378 was published Apr 30, 2022
DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite... Low Unreviewed
CVE-2000-0715 was published Apr 30, 2022
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite... Low Unreviewed
CVE-2001-0131 was published Apr 30, 2022
wmFrog weather monitor 0.1.6 and other versions before 0.2.0 allows local users to overwrite... Low Unreviewed
CVE-2004-2473 was published Apr 29, 2022
There is an information leak vulnerability in the digital media player (DMS) of ZTE's residential... Low Unreviewed
CVE-2021-21740 was published May 24, 2022
Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability.... Low Unreviewed
CVE-2020-5324 was published May 24, 2022
Apport creates a world writable lock file with root ownership in the world writable /var/lock... Low Unreviewed
CVE-2020-8831 was published May 24, 2022
The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform... Low Unreviewed
CVE-2021-23239 was published May 24, 2022
The make_lockdir_name function in policy.c in pmount 0.9.18 allow local users to overwrite... Low Unreviewed
CVE-2010-2192 was published May 17, 2022
GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a... Low Unreviewed
CVE-2010-2056 was published May 17, 2022
HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary... Low Unreviewed
CVE-2013-0200 was published May 17, 2022
The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp,... Low Unreviewed
CVE-2010-4173 was published May 17, 2022
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2010-2794 was published May 17, 2022
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink... Low Unreviewed
CVE-2011-3204 was published May 17, 2022
The configure script in gnash 0.8.8 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2010-4337 was published May 17, 2022
The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users... Low Unreviewed
CVE-2012-4676 was published May 17, 2022
Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary... Low Unreviewed
CVE-2011-5146 was published May 17, 2022
as31 2.3.1-4 does not seed the random number generator and generates predictable temporary file... Low Unreviewed
CVE-2012-0808 was published May 17, 2022
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2012-5564 was published May 17, 2022
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to... Low Unreviewed
CVE-2010-2431 was published May 17, 2022
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is... Low Unreviewed
CVE-2011-4363 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database