Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

10,711 advisories

Loading
site_searcher.cgi in Super Site Searcher allows remote attackers to execute arbitrary commands... High Unreviewed
CVE-2002-2420 was published Apr 30, 2022
acWEB 1.14 allows remote attackers to cause a denial of service (crash) via an HTTP request for a... High Unreviewed
CVE-2002-2421 was published Apr 30, 2022
Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause... Moderate Unreviewed
CVE-2002-2406 was published Apr 30, 2022
Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user... Moderate Unreviewed
CVE-2002-2393 was published Apr 30, 2022
Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash)... High Unreviewed
CVE-2002-2371 was published Apr 30, 2022
Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell... High Unreviewed
CVE-2002-2365 was published Apr 30, 2022
Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of... High Unreviewed
CVE-2002-2354 was published Apr 30, 2022
Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows... High Unreviewed
CVE-2002-2328 was published Apr 30, 2022
ICQ client 2001b, 2002a and 2002b allows remote attackers to cause a denial of service (CPU... High Unreviewed
CVE-2002-2329 was published Apr 30, 2022
The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier,... Moderate Unreviewed
CVE-2002-2338 was published Apr 30, 2022
The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by... High Unreviewed
CVE-2002-2325 was published Apr 30, 2022
Ultimate PHP Board (UPB) 1.0b stores the users.dat data file under the web root with insufficient... Moderate Unreviewed
CVE-2002-2322 was published Apr 30, 2022
Mozilla 1.0 allows remote attackers to steal cookies from other domains via a javascript: URL... Moderate Unreviewed
CVE-2002-2314 was published Apr 30, 2022
tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2002-2237 was published Apr 30, 2022
The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12... High Unreviewed
CVE-2002-2239 was published Apr 30, 2022
Format string vulnerability in the awp_log function in apt-www-proxy 0.1 allows remote attackers... High Unreviewed
CVE-2002-2236 was published Apr 30, 2022
MailScanner before 4.0 5-1 and before 3.2 6-1 allows remote attackers to bypass protection via... Moderate Unreviewed
CVE-2002-2228 was published Apr 30, 2022
WatchGuard SOHO products running firmware 5.1.6 and earlier, and Vclass/RSSA using 3.2 SP1 and... High Unreviewed
CVE-2002-1979 was published Apr 30, 2022
astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2002-1874 was published Apr 30, 2022
The Post_Method function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers... Moderate Unreviewed
CVE-2002-1663 was published Apr 30, 2022
Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings,... High Unreviewed
CVE-2002-1358 was published Apr 30, 2022
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may... High Unreviewed
CVE-2002-1359 was published Apr 30, 2022
Multiple SSH2 servers and clients do not properly handle strings with null characters in them... High Unreviewed
CVE-2002-1360 was published Apr 30, 2022
The getmxrecord function in Fetchmail 6.0.0 and earlier does not properly check the boundary of a... Moderate Unreviewed
CVE-2002-1175 was published Apr 30, 2022
CardBoard 2.4 greeting card CGI by Michael Barretto allows remote attackers to execute arbitrary... High Unreviewed
CVE-2001-1584 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database