GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,029
Erlang
29
GitHub Actions
16
Go
1,832
Maven
5,000+
npm
3,573
NuGet
632
pip
3,158
Pub
10
RubyGems
847
Rust
797
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,776 advisories
Filter by severity
Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (infinite...
Low
Unreviewed
CVE-2004-2476
was published
Apr 29, 2022
wmFrog weather monitor 0.1.6 and other versions before 0.2.0 allows local users to overwrite...
Low
Unreviewed
CVE-2004-2473
was published
Apr 29, 2022
Unknown vulnerability in gnubiff 1.2.0 and earlier allows local users to obtain passwords,...
Low
Unreviewed
CVE-2004-2459
was published
Apr 29, 2022
Unspecified vulnerability in cmdline.c in proxytunnel 1.1.3 and earlier allows local users to...
Low
Unreviewed
CVE-2004-2440
was published
Apr 29, 2022
aMSN 0.90 for Microsoft Windows allows local users to obtain sensitive information such as hashed...
Low
Unreviewed
CVE-2004-2454
was published
Apr 29, 2022
Computer Associates Unicenter Common Services 3.0 and earlier stores the database "SA" password...
Low
Unreviewed
CVE-2004-2436
was published
Apr 29, 2022
Keene Digital Media Server 1.0.2 allows local users to obtain usernames and passwords by reading...
Low
Unreviewed
CVE-2004-2419
was published
Apr 29, 2022
WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file...
Low
Unreviewed
CVE-2004-2400
was published
Apr 29, 2022
Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions...
Low
Unreviewed
CVE-2004-2408
was published
Apr 29, 2022
Novell NetWare 6.5 SP 1.1, when installing or upgrading using the Overlay CDs and performing a...
Low
Unreviewed
CVE-2004-2414
was published
Apr 29, 2022
Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9 through 2.0.1 might allow attackers...
Low
Unreviewed
CVE-2004-2410
was published
Apr 29, 2022
Netenberg Fantastico De Luxe 2.8 uses database file names that contain the associated usernames,...
Low
Unreviewed
CVE-2004-2398
was published
Apr 29, 2022
Memory leak in passwd 0.68 allows local users to cause a denial of service (memory consumption)...
Low
Unreviewed
CVE-2004-2395
was published
Apr 29, 2022
Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use...
Low
Unreviewed
CVE-2004-2394
was published
Apr 29, 2022
Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial...
Low
Unreviewed
CVE-2004-2365
was published
Apr 29, 2022
The /.inlook/.crypt file for inlook 0.7.3 and earlier is installed with world readable...
Low
Unreviewed
CVE-2004-2337
was published
Apr 29, 2022
ColdFusion MX 6.1 and 6.1 J2EE allows local users to bypass sandbox security restrictions and...
Low
Unreviewed
CVE-2004-2331
was published
Apr 29, 2022
IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to (1) create or overwrite...
Low
Unreviewed
CVE-2004-2319
was published
Apr 29, 2022
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to...
Low
Unreviewed
CVE-2004-2311
was published
Apr 29, 2022
BEA WebLogic Server and Express 8.1 SP1 and earlier allows local users in the Operator role to...
Low
Unreviewed
CVE-2004-2321
was published
Apr 29, 2022
Directory traversal vulnerability in Crob FTP Server 3.5.1 allows local users to browse outside...
Low
Unreviewed
CVE-2004-2309
was published
Apr 29, 2022
Race condition in the sysfs_read_file and sysfs_write_file functions in Linux kernel before 2.6...
Low
Unreviewed
CVE-2004-2302
was published
Apr 29, 2022
MTools Mformat before 3.9.9, when installed setuid root, creates files with world-readable and...
Low
Unreviewed
CVE-2004-2303
was published
Apr 29, 2022
F-Secure Anti-Virus 5.41 and 5.42 on Windows, Client Security 5.50 and 5.52, 4.60 for Samba...
Low
Unreviewed
CVE-2004-2276
was published
Apr 29, 2022
Xconfig in Hummingbird Exceed before 9.0.0.1, when the Screen Definition is password-protected,...
Low
Unreviewed
CVE-2004-2258
was published
Apr 29, 2022
ProTip!
Advisories are also available from the
GraphQL API