GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,900
Composer 4,268
Erlang 31
GitHub Actions 21
Go 2,042
Maven 5,226
npm 3,735
NuGet 662
pip 3,414
Pub 12
RubyGems 891
Rust 867
Swift 36

Unreviewed advisories

All unreviewed 238,153

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,046 advisories

Filter by severity

Sort by

Least recently updated

The execve system call in Linux 2.4.x records the file descriptor of the executable process in... Low Unreviewed

CVE-2003-0476 was published Apr 29, 2022

VMware Workstation 4.0 for Linux allows local users to overwrite arbitrary files and gain... Low Unreviewed

CVE-2003-0480 was published Apr 29, 2022

A race condition in the way env_start and env_end pointers are initialized in the execve system... Low Unreviewed

CVE-2003-0462 was published Apr 29, 2022

/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial... Low Unreviewed

CVE-2003-0461 was published Apr 29, 2022

Portmon 1.7 and possibly earlier versions allows local users to read and write arbitrary files... Low Unreviewed

CVE-2003-0448 was published Apr 29, 2022

eldav WebDAV client for Emacs, version 0.7.2 and earlier, allows local users to create or... Low Unreviewed

CVE-2003-0438 was published Apr 29, 2022

Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which... Low Unreviewed

CVE-2003-0381 was published Apr 29, 2022

znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed

CVE-2003-0367 was published Apr 29, 2022

BitchX IRC client 1.0c20cvs and earlier allows attackers to cause a denial of service (core dump)... Low Unreviewed

CVE-2003-0334 was published Apr 29, 2022

Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5... Low Unreviewed

CVE-2003-0279 was published Apr 29, 2022

The ioperm system call in Linux kernel 2.4.20 and earlier does not properly restrict privileges,... Low Unreviewed

CVE-2003-0246 was published Apr 29, 2022

ps2epsi creates insecure temporary files when calling ghostscript, which allows local attackers... Low Unreviewed

CVE-2003-0207 was published Apr 29, 2022

msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary... Low Unreviewed

CVE-2003-0193 was published Apr 29, 2022

psbanner in the LPRng package allows local users to overwrite arbitrary files via a symbolic link... Low Unreviewed

CVE-2003-0136 was published Apr 29, 2022

adb2mhc in the mhc-utils package before 0.25+20010625-7.1 allows local users to overwrite... Low Unreviewed

CVE-2003-0120 was published Apr 29, 2022

The DEC UDK processing feature in the hanterm (hanterm-xf) terminal emulator before 2.0.5 allows... Low Unreviewed

CVE-2003-0079 was published Apr 29, 2022

The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier... Low Unreviewed

CVE-2003-0071 was published Apr 29, 2022

Linux kernel 2.4.10 through 2.4.21-pre4 does not properly handle the O_DIRECT feature, which... Low Unreviewed

CVE-2003-0018 was published Apr 29, 2022

The data collection script for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x... Low Unreviewed

CVE-2003-0012 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible Low Unreviewed

CVE-2022-29816 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 notification mechanisms about using Unicode... Low Unreviewed

CVE-2022-29812 was published Apr 29, 2022

In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was... Low Unreviewed

CVE-2022-29820 was published Apr 29, 2022

An insecure data storage vulnerability allows a physical attacker with root privileges to... Low Unreviewed

CVE-2021-25266 was published Apr 28, 2022

IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by... Low Unreviewed

CVE-2012-3341 was published Apr 23, 2022

systemd 37-1 does not properly handle non-existent services, which causes a denial of service ... Low Unreviewed

CVE-2012-1101 was published Apr 23, 2022

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,046 advisories