GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,413
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+
17 advisories
Filter by severity
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) implementation in Mozilla...
Moderate
Unreviewed
CVE-2010-2763
was published
May 17, 2022
Use-after-free vulnerability in the nsTreeSelection function in Mozilla Firefox before 3.5.12 and...
High
Unreviewed
CVE-2010-2760
was published
May 17, 2022
The navigator.plugins implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
High
Unreviewed
CVE-2010-2767
was published
May 17, 2022
Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3...
Moderate
Unreviewed
CVE-2010-2768
was published
May 17, 2022
Integer overflow in the FRAMESET element implementation in Mozilla Firefox before 3.5.12 and 3.6...
High
Unreviewed
CVE-2010-2765
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
Moderate
Unreviewed
CVE-2010-2769
was published
May 17, 2022
The normalizeDocument function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
High
Unreviewed
CVE-2010-2766
was published
May 17, 2022
The nsTreeContentView function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9,...
High
Unreviewed
CVE-2010-3167
was published
May 17, 2022
Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3...
High
Unreviewed
CVE-2010-3168
was published
May 17, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.12 and 3...
High
Unreviewed
CVE-2010-3169
was published
May 17, 2022
Unspecified vulnerability in Google Chrome before 5.0.375.55 might allow remote attackers to...
Moderate
Unreviewed
CVE-2010-2106
was published
May 13, 2022
Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType before 2.4.2 allows remote...
Moderate
Unreviewed
CVE-2010-2541
was published
May 13, 2022
FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows...
Moderate
Unreviewed
CVE-2010-2807
was published
May 13, 2022
The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly...
Moderate
Unreviewed
CVE-2010-2805
was published
May 13, 2022
Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2...
Moderate
Unreviewed
CVE-2010-2806
was published
May 13, 2022
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2...
Moderate
Unreviewed
CVE-2010-2808
was published
May 13, 2022
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF...
High
Unreviewed
CVE-2010-1797
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API