Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
55
GitHub Actions
50
Go
3,732
Maven
5,000+
npm
5,000+
NuGet
935
pip
4,952
Pub
13
RubyGems
1,055
Rust
1,343
Swift
54
Unreviewed advisories
All unreviewed
5,000+

10,538 advisories

Loading
modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote... Moderate Unreviewed
CVE-2006-6735 was published May 1, 2022
The Servlet Engine and Web Container in IBM WebSphere Application Server (WAS) before 6.0.2.17,... Moderate Unreviewed
CVE-2006-6637 was published May 1, 2022
tiki-wiki_rss.php in Tikiwiki 1.9.5, 1.9.2, and possibly other versions allows remote attackers... Moderate Unreviewed
CVE-2006-6457 was published May 1, 2022
Adobe ColdFusion MX 7 through 7.0.2, and JRun 4, when run on Microsoft IIS, allows remote... Moderate Unreviewed
CVE-2006-5858 was published May 1, 2022
The SSL server in AEP Smartgate 4.3b allows remote attackers to determine existence of... Moderate Unreviewed
CVE-2006-5725 was published May 1, 2022
Tikiwiki 1.9.5 allows remote attackers to obtain sensitive information (MySQL username and... Moderate Unreviewed
CVE-2006-5702 was published May 1, 2022
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under... Low Unreviewed
CVE-2006-5229 was published May 1, 2022
muforum (µforum) 0.4c stores membres/members.dat under the web document root with insufficient... Moderate Unreviewed
CVE-2006-4595 was published May 1, 2022
IBM WebSphere Application Server (WAS) before 6.0.2.13 allows context-dependent attackers to... Moderate Unreviewed
CVE-2006-4223 was published May 1, 2022
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have... High Unreviewed
CVE-2006-4136 was published May 1, 2022
The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does... Moderate Unreviewed
CVE-2006-4006 was published May 1, 2022
Alkacon OpenCms Exposes JSP Source Code Moderate
CVE-2006-3936 was published for org.opencms:opencms-core (Maven) May 1, 2022
Apache Tomcat Reveals Directories Moderate
CVE-2006-3835 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Trac reStructuredText breach of privacy and denial of service vulnerability High
CVE-2006-3695 was published for trac (pip) May 1, 2022
BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier,... Moderate Unreviewed
CVE-2006-3561 was published May 1, 2022
V3 Chat allows remote attackers to obtain the installation path via (1) an invalid id parameter... Low Unreviewed
CVE-2006-3365 was published May 1, 2022
Net Portal Dynamic System (NPDS) 5.10 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2006-2950 was published May 1, 2022
Internet Explorer 6 allows user-assisted remote attackers to read arbitrary files by tricking a... Moderate Unreviewed
CVE-2006-2900 was published May 1, 2022
Mozilla Suite 1.7.13, Mozilla Firefox 1.5.0.3 and possibly other versions before before 1.8.0,... Moderate Unreviewed
CVE-2006-2613 was published May 1, 2022
index.php in Destiney Links Script 2.1.2 allows remote attackers to obtain the installation path... Moderate Unreviewed
CVE-2006-2535 was published May 1, 2022
Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to conduct... Moderate Unreviewed
CVE-2006-2384 was published May 1, 2022
NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional... Moderate Unreviewed
CVE-2006-2356 was published May 1, 2022
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8... Moderate Unreviewed
CVE-2006-2341 was published May 1, 2022
A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions... Moderate Unreviewed
CVE-2006-2111 was published May 1, 2022
MAXdev MDPro 1.0.73 and 1.0.72, and possibly other versions before 1.076, allows remote attackers... Moderate Unreviewed
CVE-2006-1677 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database