Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

316 advisories

Loading
The SIP channel driver in Asterisk Open Source 1.4.22, 1.4.23, and 1.4.23.1; 1.6.0 before 1.6.0.6... Low Unreviewed
CVE-2009-0871 was published May 2, 2022
vetmonnt.sys in CA Internet Security Suite r3, vetmonnt.sys before 9.0.0.184 in Internet Security... Low Unreviewed
CVE-2009-0682 was published May 2, 2022
Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when... Low Unreviewed
CVE-2009-0093 was published May 2, 2022
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7,... Low Unreviewed
CVE-2008-4549 was published May 2, 2022
Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers... Low Unreviewed
CVE-2008-3934 was published May 2, 2022
Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service... Low Unreviewed
CVE-2008-3933 was published May 2, 2022
Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux... Low Unreviewed
CVE-2008-3889 was published May 2, 2022
The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote... Low Unreviewed
CVE-2008-3834 was published May 2, 2022
The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application... Low Unreviewed
CVE-2008-3230 was published May 1, 2022
Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' (pipe) characters in a... Low Unreviewed
CVE-2008-2933 was published May 1, 2022
Rising Antivirus 2008 before 20.38.20 allows local users to cause a denial of service (system... Low Unreviewed
CVE-2008-1738 was published May 1, 2022
Interpretation conflict in PHP Toolkit before 1.0.1 on Gentoo Linux might allow local users to... Low Unreviewed
CVE-2008-1734 was published May 1, 2022
Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set... Low Unreviewed
CVE-2008-1294 was published May 1, 2022
The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24... Low Unreviewed
CVE-2008-0010 was published May 1, 2022
The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not... Low Unreviewed
CVE-2008-0009 was published May 1, 2022
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for... Low Unreviewed
CVE-2007-6207 was published May 1, 2022
PHP 5.2.5 and earlier allows context-dependent attackers to cause a denial of service ... Low Unreviewed
CVE-2007-6039 was published May 1, 2022
Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5... Low Unreviewed
CVE-2007-5438 was published May 1, 2022
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain... Low Unreviewed
CVE-2007-5086 was published May 1, 2022
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a... Low Unreviewed
CVE-2007-4927 was published May 1, 2022
Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local... Low Unreviewed
CVE-2007-4570 was published May 1, 2022
The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before... Low Unreviewed
CVE-2007-3381 was published May 1, 2022
CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2... Low Unreviewed
CVE-2007-2509 was published May 1, 2022
The SymTDI device driver (SYMTDI.SYS) in Symantec Norton Personal Firewall 2006 9.1.1.7 and... Low Unreviewed
CVE-2007-1476 was published May 1, 2022
The Sony Ericsson K700i and W810i phones allow remote attackers to cause a denial of service ... Low Unreviewed
CVE-2007-0521 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database