GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
10,711 advisories
Filter by severity
Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an...
Moderate
Unreviewed
CVE-2003-1419
was published
Apr 29, 2022
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the...
High
Unreviewed
CVE-2003-1425
was published
Apr 29, 2022
PHP remote file inclusion vulnerability in hit.php for Kietu 2.0 and 2.3 allows remote attackers...
High
Unreviewed
CVE-2003-1402
was published
Apr 29, 2022
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1...
High
Unreviewed
CVE-2003-1405
was published
Apr 29, 2022
foo.php3 in DotBr 0.1 allows remote attackers to obtain sensitive information via a direct...
High
Unreviewed
CVE-2003-1403
was published
Apr 29, 2022
Aprelium Technologies Abyss Web Server 1.1.2, and possibly other versions before 1.1.4, allows...
High
Unreviewed
CVE-2003-1364
was published
Apr 29, 2022
The escape_dangerous_chars function in CGI::Lite 2.0 and earlier does not correctly remove...
Moderate
Unreviewed
CVE-2003-1365
was published
Apr 29, 2022
List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "|" (pipe),...
Moderate
Unreviewed
CVE-2003-1350
was published
Apr 29, 2022
The Post_Method function in Monkey HTTP Daemon before 0.6.2 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2003-1209
was published
Apr 29, 2022
Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "...
Moderate
Unreviewed
CVE-2003-1025
was published
Apr 29, 2022
Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2003-1003
was published
Apr 29, 2022
The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly...
High
Unreviewed
CVE-2003-0825
was published
Apr 29, 2022
The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub...
Moderate
Unreviewed
CVE-2003-0795
was published
Apr 29, 2022
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service ...
High
Unreviewed
CVE-2003-0567
was published
Apr 29, 2022
Nokia Gateway GPRS support node (GGSN) allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2003-0368
was published
Apr 29, 2022
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on...
Low
Unreviewed
CVE-2003-0367
was published
Apr 29, 2022
Sed Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An...
High
Unreviewed
CVE-2022-1509
was published
Apr 29, 2022
Improper Input Validation in httpx
Critical
CVE-2021-41945
was published
for
httpx
(pip)
Apr 29, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c,...
High
Unreviewed
CVE-2022-28193
was published
Apr 28, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot blob_decompress function...
Moderate
Unreviewed
CVE-2022-28196
was published
Apr 28, 2022
ballcat-codegen template engine remote code execution injection
High
CVE-2022-24881
was published
for
com.hccake:ballcat-codegen
(Maven)
Apr 27, 2022
The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code...
Critical
Unreviewed
CVE-2022-29499
was published
Apr 27, 2022
Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching...
Moderate
Unreviewed
CVE-2012-0334
was published
Apr 23, 2022
gnome-keyring does not discard stored secrets when using gnome_keyring_lock_all_sync function
High
Unreviewed
CVE-2012-6111
was published
Apr 23, 2022
ecryptfs-utils: suid helper does not restrict mounting filesystems with nosuid,nodev which...
High
Unreviewed
CVE-2012-3409
was published
Apr 23, 2022
ProTip!
Advisories are also available from the
GraphQL API