Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

162 advisories

Loading
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows... Low Unreviewed
CVE-2012-6348 was published May 17, 2022
bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to... Low Unreviewed
CVE-2013-3368 was published May 17, 2022
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows... Low Unreviewed
CVE-2013-1444 was published May 17, 2022
dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary... Low Unreviewed
CVE-2011-3153 was published May 17, 2022
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local... Low Unreviewed
CVE-2013-2142 was published May 17, 2022
The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify... Low Unreviewed
CVE-2014-0027 was published May 17, 2022
LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink... Low Unreviewed
CVE-2011-4105 was published May 17, 2022
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite... Low Unreviewed
CVE-2012-0786 was published May 17, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb... Low Unreviewed
CVE-2019-18901 was published May 24, 2022
base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to... Low Unreviewed
CVE-2013-6402 was published May 17, 2022
lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read... Low Unreviewed
CVE-2013-6891 was published May 17, 2022
DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134... Low Unreviewed
CVE-2011-3154 was published May 17, 2022
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on... Low Unreviewed
CVE-2013-4472 was published May 17, 2022
include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2014-3986 was published May 17, 2022
include/tests_webservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary... Low Unreviewed
CVE-2014-3982 was published May 17, 2022
The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android... Low Unreviewed
CVE-2013-6124 was published May 17, 2022
The undo save quit routine in the kernel in Blender 2.5, 2.63a, and earlier allows local users to... Low Unreviewed
CVE-2010-5105 was published May 17, 2022
Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a... Low Unreviewed
CVE-2015-0858 was published May 17, 2022
lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed
CVE-2014-3421 was published May 17, 2022
lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite... Low Unreviewed
CVE-2014-3422 was published May 17, 2022
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed
CVE-2014-3424 was published May 17, 2022
lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed
CVE-2014-3423 was published May 17, 2022
The daemonize.py module in Subversion 1.8.0 before 1.8.2 allows local users to gain privileges... Low Unreviewed
CVE-2013-7393 was published May 17, 2022
svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in... Low Unreviewed
CVE-2013-4262 was published May 17, 2022
lib/parse_ini.c in Nagios Plugins 2.0.2 allows local users to obtain sensitive information via a... Low Unreviewed
CVE-2014-4703 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database