Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,765
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

10,801 advisories

Loading
Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by... Low Unreviewed
CVE-2006-1192 was published May 1, 2022
Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in... Moderate Unreviewed
CVE-2006-0914 was published May 1, 2022
Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T... Moderate Unreviewed
CVE-2006-0744 was published May 1, 2022
Unspecified vulnerability in Stack Group Bidding Protocol (SGBP) support in Cisco IOS 12.0... High Unreviewed
CVE-2006-0340 was published May 1, 2022
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2006-0321 was published May 1, 2022
The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before 1.0 allows remote attackers... Moderate Unreviewed
CVE-2006-0298 was published May 1, 2022
membership.asp in Mini-Nuke CMS System 1.8.2 and earlier does not verify the old password when... Moderate Unreviewed
CVE-2006-0203 was published May 1, 2022
packets.c in Freeciv 2.0 before 2.0.8 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2006-0047 was published May 1, 2022
Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2005-4846 was published May 1, 2022
The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote... High Unreviewed
CVE-2005-4560 was published May 1, 2022
Opera 8.50 allows remote attackers to cause a denial of service (crash) via a Java applet with a... Moderate Unreviewed
CVE-2005-3946 was published May 1, 2022
Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a... Moderate Unreviewed
CVE-2005-3678 was published May 1, 2022
Macromedia Flash plugin (1) Flash.ocx 7.0.19.0 (Windows) and earlier and (2) libflashplayer.so... High Unreviewed
CVE-2005-3591 was published May 1, 2022
Serv-U FTP Server before 6.1.0.4 allows attackers to cause a denial of service (crash) via (1)... Moderate Unreviewed
CVE-2005-3467 was published May 1, 2022
The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2)... High Unreviewed
CVE-2005-3330 was published May 1, 2022
Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS)... Low Unreviewed
CVE-2005-3055 was published May 1, 2022
The IMAP server in IMail Server 8.20 in Ipswitch Collaboration Suite (ICS) before 2.02 allows... Moderate Unreviewed
CVE-2005-2923 was published May 1, 2022
client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers to cause a... Moderate Unreviewed
CVE-2005-2806 was published May 1, 2022
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly... Moderate Unreviewed
CVE-2005-2405 was published May 1, 2022
Net-SNMP 5.0.x before 5.0.10.2, 5.2.x before 5.2.1.2, and 5.1.3, when net-snmp is using stream... Moderate Unreviewed
CVE-2005-2177 was published May 1, 2022
The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote... High Unreviewed
CVE-2005-1795 was published May 1, 2022
setup.php in phpStat 1.5 allows remote attackers to bypass authentication and gain administrator... High Unreviewed
CVE-2005-1787 was published May 1, 2022
Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service... Low Unreviewed
CVE-2005-1761 was published May 1, 2022
** DISPUTED ** JavaMail API, as used by Solstice Internet Mail Server POP3 2.0, does not... Low Unreviewed
CVE-2005-1682 was published May 1, 2022
apage.cgi in WebAPP 0.9.9.2.1, and possibly earlier versions, allows remote attackers to execute... High Unreviewed
CVE-2005-1628 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database