GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
20 advisories
Filter by severity
ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to...
Moderate
Unreviewed
CVE-2007-0494
was published
May 3, 2022
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8...
Moderate
Unreviewed
CVE-2006-4343
was published
May 3, 2022
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with...
Moderate
Unreviewed
CVE-2006-4339
was published
May 3, 2022
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8...
High
Unreviewed
CVE-2006-3738
was published
May 3, 2022
OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause...
High
Unreviewed
CVE-2006-2940
was published
May 3, 2022
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2006-2937
was published
May 3, 2022
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute...
High
Unreviewed
CVE-2007-5338
was published
May 1, 2022
Multiple vulnerabilities in the Javascript engine in Mozilla Firefox before 2.0.0.8, Thunderbird...
Moderate
Unreviewed
CVE-2007-5340
was published
May 1, 2022
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when running on Linux systems with...
Moderate
Unreviewed
CVE-2007-5337
was published
May 1, 2022
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and...
Moderate
Unreviewed
CVE-2007-5339
was published
May 1, 2022
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when...
Moderate
Unreviewed
CVE-2007-5334
was published
May 1, 2022
The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other...
Moderate
Unreviewed
CVE-2007-3511
was published
May 1, 2022
CRLF injection vulnerability in the Digest Authentication support for Mozilla Firefox before 2.0...
Moderate
Unreviewed
CVE-2007-2292
was published
May 1, 2022
Buffer overflow in the crack extension (CrackLib), as bundled with PHP 4.4.6 and other versions...
Moderate
Unreviewed
CVE-2007-1401
was published
May 1, 2022
chunkcounter.cpp in KTorrent before 2.1.2 allows remote attackers to cause a denial of service ...
High
Unreviewed
CVE-2007-1385
was published
May 1, 2022
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers...
Moderate
Unreviewed
CVE-2007-1384
was published
May 1, 2022
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript...
Moderate
Unreviewed
CVE-2007-1095
was published
May 1, 2022
Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to...
High
Unreviewed
CVE-2007-0493
was published
May 1, 2022
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2006-4095
was published
May 1, 2022
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2006-4096
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API