Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

14,305 advisories

Loading
The experimental IP packet queuing feature in Netfilter / IPTables in Linux kernel 2.4 up to 2.4... Low Unreviewed
CVE-2002-2254 was published Apr 30, 2022
Runtime library in GNU Ada compiler (GNAT) 3.12p through 3.14p allows local users to modify files... Low Unreviewed
CVE-2002-0271 was published Apr 30, 2022
CentraOne 5.2 and Centra ASP with basic authentication enabled creates world-writable base64... Low Unreviewed
CVE-2001-1550 was published Apr 30, 2022
ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering... Low Unreviewed
CVE-2001-1548 was published Apr 30, 2022
The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user... Low Unreviewed
CVE-2001-1593 was published Apr 30, 2022
** DISPUTED ** RunAs (runas.exe) in Windows 2000 allows local users to create a spoofed named... Low Unreviewed
CVE-2001-1519 was published Apr 30, 2022
Linux kernel 2.2.19 enables CAP_SYS_RESOURCE for setuid processes, which allows local users to... Low Unreviewed
CVE-2001-1551 was published Apr 30, 2022
Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views... Low Unreviewed
CVE-2002-0798 was published Apr 30, 2022
Bugzilla before 2.14 does not restrict access to sanitycheck.cgi, which allows local users to... Low Unreviewed
CVE-2001-1405 was published Apr 30, 2022
restrictEnabled in Integrity Protection Driver (IPD) 1.2 delays driver installation for 20... Low Unreviewed
CVE-2002-2126 was published Apr 30, 2022
Apple Palm Desktop 4.0b76 and 4.0b77 creates world-readable backup files and folders when a... Low Unreviewed
CVE-2002-0120 was published Apr 30, 2022
efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via... Low Unreviewed
CVE-2002-0129 was published Apr 30, 2022
CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command. Low Unreviewed
CVE-2002-0138 was published Apr 30, 2022
Sendmail before 8.11.4, and 8.12.0 before 8.12.0.Beta10, allows local users to cause a denial of... Low Unreviewed
CVE-2001-1349 was published Apr 30, 2022
Unknown vulnerability in classifier code for Linux kernel before 2.2.19 could result in denial of... Low Unreviewed
CVE-2001-1393 was published Apr 30, 2022
PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID,... Low Unreviewed
CVE-2002-0121 was published Apr 30, 2022
Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to... Low Unreviewed
CVE-2002-1996 was published Apr 30, 2022
jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local... Low Unreviewed
CVE-2002-2001 was published Apr 30, 2022
mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via... Low Unreviewed
CVE-2001-1331 was published Apr 30, 2022
Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink... Low Unreviewed
CVE-2001-1333 was published Apr 30, 2022
Network Associates PGP 7.0.4 and 7.1 does not time out according to the value set in the ... Low Unreviewed
CVE-2002-1977 was published Apr 30, 2022
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical... Low Unreviewed
CVE-2001-1578 was published Apr 30, 2022
rhmask 1.0-9 in Red Hat Linux 7.1 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2002-1890 was published Apr 30, 2022
easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which... Low Unreviewed
CVE-2001-1527 was published Apr 30, 2022
Xircom REX 6000 allows local users to obtain the 10 digit PIN by starting a serial monitor,... Low Unreviewed
CVE-2001-1520 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database