GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,434
Erlang
29
GitHub Actions
16
Go
1,660
Maven
4,922
npm
3,450
NuGet
594
pip
2,840
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
321 advisories
Filter by severity
VMware Workspace one UEM console (2102 prior to 21.2.0.8, 2101 prior to 21.1.0.14, 2011 prior to...
Moderate
Unreviewed
CVE-2021-21990
was published
May 24, 2022
File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based...
High
Unreviewed
CVE-2019-18655
was published
May 24, 2022
A Structured Exception Handler (SEH) based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008...
Critical
Unreviewed
CVE-2019-17415
was published
May 24, 2022
Unspecified vulnerability in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 on...
Moderate
Unreviewed
CVE-2010-3195
was published
May 17, 2022
libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with...
High
Unreviewed
CVE-2008-7251
was published
May 17, 2022
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and...
Moderate
Unreviewed
CVE-2010-2011
was published
May 17, 2022
** DISPUTED ** The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows...
Low
Unreviewed
CVE-2008-7258
was published
May 17, 2022
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute...
High
Unreviewed
CVE-2010-3484
was published
May 17, 2022
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute...
High
Unreviewed
CVE-2010-3485
was published
May 17, 2022
Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8...
High
Unreviewed
CVE-2010-2797
was published
May 17, 2022
Directory traversal in pyftpdlib
Moderate
CVE-2008-7262
was published
for
pyftpdlib
(pip)
May 17, 2022
Improper Authentication in pyftpdlib
High
CVE-2008-7263
was published
for
pyftpdlib
(pip)
May 17, 2022
Improper input validation in pyftpdlib
Moderate
CVE-2008-7264
was published
for
pyftpdlib
(pip)
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4...
Moderate
Unreviewed
CVE-2010-4246
was published
May 17, 2022
Cobbler is vulnerable to code injection
High
CVE-2010-2235
was published
for
cobbler
(pip)
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4 allow remote attackers to...
Moderate
Unreviewed
CVE-2010-4412
was published
May 17, 2022
Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to...
High
Unreviewed
CVE-2010-4632
was published
May 17, 2022
phpMyAdmin unsafely handles temporary files
High
CVE-2008-7252
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 17, 2022
The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25...
Moderate
Unreviewed
CVE-2010-2244
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the...
Moderate
Unreviewed
CVE-2008-7271
was published
May 17, 2022
Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote attackers to...
Moderate
Unreviewed
CVE-2010-4562
was published
May 17, 2022
OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not prevent...
Moderate
Unreviewed
CVE-2008-7270
was published
May 17, 2022
Mozilla Firefox before 4 cannot properly restrict modifications to cookies established in HTTPS...
Moderate
Unreviewed
CVE-2008-7293
was published
May 17, 2022
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which...
Moderate
Unreviewed
CVE-2008-7297
was published
May 17, 2022
Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions,...
Moderate
Unreviewed
CVE-2008-7296
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API