GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,694 advisories
Filter by severity
MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service ...
Low
Unreviewed
CVE-2004-0837
was published
Apr 29, 2022
Lexar Safe Guard for JumpDrive Secure 1.0 stores the password insecurely in memory using XOR...
Low
Unreviewed
CVE-2004-0838
was published
Apr 29, 2022
PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a...
Low
Unreviewed
CVE-2004-0824
was published
Apr 29, 2022
The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop...
Low
Unreviewed
CVE-2004-0828
was published
Apr 29, 2022
Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1)...
Low
Unreviewed
CVE-2004-0814
was published
Apr 29, 2022
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T...
Low
Unreviewed
CVE-2004-0812
was published
Apr 29, 2022
romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a...
Low
Unreviewed
CVE-2004-0770
was published
Apr 29, 2022
The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates...
Low
Unreviewed
CVE-2004-0755
was published
Apr 29, 2022
OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during...
Low
Unreviewed
CVE-2004-0752
was published
Apr 29, 2022
Bugzilla 2.17.5 through 2.17.7 embeds the password in an image URL, which could allow local users...
Low
Unreviewed
CVE-2004-0706
was published
Apr 29, 2022
Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using...
Low
Unreviewed
CVE-2004-0653
was published
Apr 29, 2022
Unknown vulnerability in the Basic Security Module (BSM), when configured to audit either the...
Low
Unreviewed
CVE-2004-0654
was published
Apr 29, 2022
FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via...
Low
Unreviewed
CVE-2004-0618
was published
Apr 29, 2022
Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for...
Low
Unreviewed
CVE-2004-0622
was published
Apr 29, 2022
The Equalizer Load-balancer for serial network interfaces (eql.c) in Linux kernel 2.6.x up to 2.6...
Low
Unreviewed
CVE-2004-0596
was published
Apr 29, 2022
Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH...
Low
Unreviewed
CVE-2004-0565
was published
Apr 29, 2022
The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files...
Low
Unreviewed
CVE-2004-0559
was published
Apr 29, 2022
The tspc.conf configuration file in freenet6 before 0.9.6 and before 1.0 on Debian Linux has...
Low
Unreviewed
CVE-2004-0563
was published
Apr 29, 2022
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system...
Low
Unreviewed
CVE-2004-0554
was published
Apr 29, 2022
Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its...
Low
Unreviewed
CVE-2004-0564
was published
Apr 29, 2022
Business Objects WebIntelligence 2.7.0 through 2.7.4 only enforces access controls on the client,...
Low
Unreviewed
CVE-2004-0533
was published
Apr 29, 2022
Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files,...
Low
Unreviewed
CVE-2004-0497
was published
Apr 29, 2022
The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other...
Low
Unreviewed
CVE-2004-0481
was published
Apr 29, 2022
mshtml.dll in Microsoft Internet Explorer 6.0.2800 allows remote attackers to cause a denial of...
Low
Unreviewed
CVE-2004-0484
was published
Apr 29, 2022
Unknown versions of Mozilla allow remote attackers to cause a denial of service (high CPU/RAM...
Low
Unreviewed
CVE-2004-0478
was published
Apr 29, 2022
ProTip!
Advisories are also available from the
GraphQL API