Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

14,305 advisories

Loading
In Bluetooth, there is a possible way to connect or disconnect bluetooth devices without user... Low Unreviewed
CVE-2022-20330 was published Aug 13, 2022
In MMSProvider, there is a possible read of protected data due to improper input validationSQL... Low Unreviewed
CVE-2022-20280 was published Aug 13, 2022
In PackageInstaller, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20318 was published Aug 13, 2022
In ActivityManager, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20320 was published Aug 13, 2022
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp... Low Unreviewed
CVE-2002-0377 was published Apr 30, 2022
tkmail before 4.0beta9-8.1 allows local users to create or overwrite files as users via a symlink... Low Unreviewed
CVE-2002-1193 was published Apr 30, 2022
In Wi-Fi, there is a possible way to retrieve the WiFi SSID without location permissions due to a... Low Unreviewed
CVE-2022-20327 was published Aug 13, 2022
Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file... Low Unreviewed
CVE-2002-0577 was published Apr 30, 2022
The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity... Low Unreviewed
CVE-2002-0570 was published Apr 30, 2022
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many... Low Unreviewed
CVE-2002-0294 was published Apr 30, 2022
The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2002-0296 was published Apr 30, 2022
Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128... Low Unreviewed
CVE-2002-0214 was published Apr 30, 2022
Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10475 was published May 24, 2022
Reflected XSS in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10474 was published May 24, 2022
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows... Low Unreviewed
CVE-2020-10476 was published May 24, 2022
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via... Low Unreviewed
CVE-2002-0141 was published Apr 30, 2022
Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6618 ... Low Unreviewed
CVE-2019-11113 was published May 24, 2022
Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are... Low Unreviewed
CVE-2020-2731 was published May 24, 2022
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges,... Low Unreviewed
CVE-2002-0080 was published Apr 30, 2022
IIS 5 and 5.1 supporting WebDAV methods allows remote attackers to determine the internal IP... Low Unreviewed
CVE-2002-0422 was published Apr 30, 2022
Unknown vulnerability in IPV6 functionality for DCE daemons (1) dced or (2) rpcd on HP-UX 11.11... Low Unreviewed
CVE-2002-0992 was published Apr 30, 2022
Directory traversal vulnerability in the web server used in RealPlayer 6.0.7, and possibly other... Low Unreviewed
CVE-2002-0415 was published Apr 30, 2022
Joe text editor 2.8 through 2.9.7 does not remove the group and user setuid bits for backup files... Low Unreviewed
CVE-2002-2334 was published Apr 30, 2022
Lawson Financials 8.0, when configured to use a third party relational database, stores usernames... Low Unreviewed
CVE-2002-2301 was published Apr 30, 2022
akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user (nobody) via a... Low Unreviewed
CVE-2002-2274 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database