GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,028
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,158
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
111,054 advisories
Filter by severity
Microsoft Internet Explorer 6.0 and earlier allows malicious website operators to cause a denial...
Moderate
Unreviewed
CVE-2001-1219
was published
Apr 30, 2022
Directory traversal vulnerability in PL/SQL Apache module in Oracle Oracle 9i Application Server...
Moderate
Unreviewed
CVE-2001-1217
was published
Apr 30, 2022
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and...
Moderate
Unreviewed
CVE-2001-1213
was published
Apr 30, 2022
Directory traversal vulnerability in zml.cgi allows remote attackers to read arbitrary files via...
Moderate
Unreviewed
CVE-2001-1209
was published
Apr 30, 2022
D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point uses a default SNMP community...
Moderate
Unreviewed
CVE-2001-1221
was published
Apr 30, 2022
AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly...
Moderate
Unreviewed
CVE-2001-1226
was published
Apr 30, 2022
Plesk Server Administrator (PSA) 1.0 allows remote attackers to obtain PHP source code via an...
Moderate
Unreviewed
CVE-2001-1222
was published
Apr 30, 2022
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote attackers to read...
Moderate
Unreviewed
CVE-2001-1231
was published
Apr 30, 2022
Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services ...
Moderate
Unreviewed
CVE-2001-1233
was published
Apr 30, 2022
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote attacker to view...
Moderate
Unreviewed
CVE-2001-1232
was published
Apr 30, 2022
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth...
Moderate
Unreviewed
CVE-2001-1244
was published
Apr 30, 2022
Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote...
Moderate
Unreviewed
CVE-2001-1243
was published
Apr 30, 2022
Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote...
Moderate
Unreviewed
CVE-2001-1245
was published
Apr 30, 2022
PowerNet IX allows remote attackers to cause a denial of service via a port scan.
Moderate
Unreviewed
CVE-2001-1239
was published
Apr 30, 2022
Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters...
Moderate
Unreviewed
CVE-2001-1238
was published
Apr 30, 2022
vWebServer 1.2.0 allows remote attackers to cause a denial of service via a URL that contains MS...
Moderate
Unreviewed
CVE-2001-1249
was published
Apr 30, 2022
vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number...
Moderate
Unreviewed
CVE-2001-1250
was published
Apr 30, 2022
vWebServer 1.2.0 allows remote attackers to view arbitrary ASP scripts via a request for an ASP...
Moderate
Unreviewed
CVE-2001-1248
was published
Apr 30, 2022
Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001...
Moderate
Unreviewed
CVE-2001-1253
was published
Apr 30, 2022
SmallHTTP 1.204 through 3.00 beta 8 allows remote attackers to cause a denial of service via...
Moderate
Unreviewed
CVE-2001-1251
was published
Apr 30, 2022
WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local...
Moderate
Unreviewed
CVE-2001-1255
was published
Apr 30, 2022
PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote attackers to read and write files owned by the...
Moderate
Unreviewed
CVE-2001-1247
was published
Apr 30, 2022
telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2001-1263
was published
Apr 30, 2022
Directory traversal vulnerability in Doug Neal's HTTPD Daemon (DNHTTPD) before 0.4.1 allows...
Moderate
Unreviewed
CVE-2001-1266
was published
Apr 30, 2022
Avaya Argent Office allows remote attackers to cause a denial of service by sending UDP packets...
Moderate
Unreviewed
CVE-2001-1259
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API