GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,028
Erlang
29
GitHub Actions
16
Go
1,832
Maven
5,000+
npm
3,573
NuGet
632
pip
3,158
Pub
10
RubyGems
847
Rust
797
Swift
34
Unreviewed advisories
All unreviewed
5,000+
111,055 advisories
Filter by severity
Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate...
Moderate
Unreviewed
CVE-2001-1261
was published
Apr 30, 2022
wmtv 0.6.5 and earlier does not properly drop privileges, which allows local users to execute...
Moderate
Unreviewed
CVE-2001-1272
was published
Apr 30, 2022
POP3 Server for Ipswitch IMail 7.04 and earlier generates different responses to valid and...
Moderate
Unreviewed
CVE-2001-1280
was published
Apr 30, 2022
admin.cgi in Active Classifieds Free Edition 1.0, and possibly commercial versions, allows remote...
Moderate
Unreviewed
CVE-2001-1290
was published
Apr 30, 2022
Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a...
Moderate
Unreviewed
CVE-2001-1289
was published
Apr 30, 2022
Ipswitch IMail 7.04 and earlier records the physical path of attachments in an e-mail message...
Moderate
Unreviewed
CVE-2001-1282
was published
Apr 30, 2022
Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows...
Moderate
Unreviewed
CVE-2001-1285
was published
Apr 30, 2022
Web Messaging Server for Ipswitch IMail 7.04 and earlier allows remote authenticated users to...
Moderate
Unreviewed
CVE-2001-1281
was published
Apr 30, 2022
More.groupware PHP script allows remote attackers to include arbitrary files from remote web...
Moderate
Unreviewed
CVE-2001-1296
was published
Apr 30, 2022
Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2001-1294
was published
Apr 30, 2022
Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223)...
Moderate
Unreviewed
CVE-2001-1293
was published
Apr 30, 2022
Directory traversal vulnerability in Dynu FTP server 1.05 and earlier allows remote attackers to...
Moderate
Unreviewed
CVE-2001-1300
was published
Apr 30, 2022
Webodex PHP script 1.0 and earlier allows remote attackers to include arbitrary files from remote...
Moderate
Unreviewed
CVE-2001-1298
was published
Apr 30, 2022
The default configuration of SecuRemote for Check Point Firewall-1 allows remote attackers to...
Moderate
Unreviewed
CVE-2001-1303
was published
Apr 30, 2022
Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from...
Moderate
Unreviewed
CVE-2001-1299
was published
Apr 30, 2022
Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers...
Moderate
Unreviewed
CVE-2001-1295
was published
Apr 30, 2022
Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2001-1304
was published
Apr 30, 2022
ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ...
Moderate
Unreviewed
CVE-2001-1305
was published
Apr 30, 2022
cvmlogin and statfile in Paul Jarc idtools before 2001.06.27 do not properly check the return...
Moderate
Unreviewed
CVE-2001-1324
was published
Apr 30, 2022
Microsoft Exchange 5.5 2000 allows remote attackers to cause a denial of service (hang) via...
Moderate
Unreviewed
CVE-2001-1319
was published
Apr 30, 2022
pmake before 2.1.35 in Turbolinux 6.05 and earlier is installed with setuid root privileges,...
Moderate
Unreviewed
CVE-2001-1327
was published
Apr 30, 2022
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator...
Moderate
Unreviewed
CVE-2001-1334
was published
Apr 30, 2022
Beck GmbH IPC@Chip TelnetD service supports only one connection and does not disconnect a user...
Moderate
Unreviewed
CVE-2001-1340
was published
Apr 30, 2022
Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to cause a denial of service...
Moderate
Unreviewed
CVE-2001-1337
was published
Apr 30, 2022
Beck IPC GmbH IPC@CHIP TelnetD server generates different responses when given valid and invalid...
Moderate
Unreviewed
CVE-2001-1338
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API