GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,142
Composer 3,412
Erlang 28
GitHub Actions 16
Go 1,649
Maven 4,914
npm 3,437
NuGet 594
pip 2,682
Pub 10
RubyGems 822
Rust 760
Swift 34

Unreviewed advisories

All unreviewed 214,347

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5 advisories

Filter by severity

Sort by

Least recently updated

agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote... Moderate Unreviewed

CVE-2009-1887 was published May 2, 2022

The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and... High Unreviewed

CVE-2009-0231 was published May 2, 2022

Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows 2000 SP4, XP SP2... High Unreviewed

CVE-2009-0232 was published May 2, 2022

Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via... High Unreviewed

CVE-2008-1887 was published May 1, 2022

Cross site scripting that affects rails Moderate

CVE-2009-3009 was published for actionpack (RubyGems) Oct 24, 2017

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5 advisories