GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,909
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,044
Maven 5,228
npm 3,736
NuGet 663
pip 3,414
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,236

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,046 advisories

Filter by severity

Sort by

Least recently updated

babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and... Low Unreviewed

CVE-2010-3440 was published Apr 21, 2022

The update{_bad,}_phishing_sites scripts in mailscanner 4.79.11-2 downloads files and trusts them... Low Unreviewed

CVE-2010-3292 was published Apr 21, 2022

mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink... Low Unreviewed

CVE-2010-3095 was published Apr 21, 2022

Locale module and dependent contributed modules in Drupal 6.x before 6.16 and 5.x before version... Low Unreviewed

CVE-2010-2472 was published Apr 21, 2022

Drupal 6.x before 6.16 and 5.x before version 5.22 does not properly block users under certain... Low Unreviewed

CVE-2010-2473 was published Apr 21, 2022

MySQL-GUI-tools (mysql-administrator) leaks passwords into process list after with launch of... Low Unreviewed

CVE-2010-4178 was published Apr 21, 2022

In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not verified when using the client... Low Unreviewed

CVE-2009-3552 was published Apr 21, 2022

liboping 1.3.2 allows users reading arbitrary files upon the local system. Low Unreviewed

CVE-2009-3614 was published Apr 21, 2022

alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a... Low Unreviewed

CVE-2009-0035 was published Apr 21, 2022

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without... Low Unreviewed

CVE-2007-3732 was published Apr 21, 2022

NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication... Low Unreviewed

CVE-2006-7246 was published Apr 21, 2022

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions... Low Unreviewed

CVE-2022-21423 was published Apr 20, 2022

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed

CVE-2022-21443 was published Apr 20, 2022

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).... Low Unreviewed

CVE-2022-21486 was published Apr 20, 2022

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).... Low Unreviewed

CVE-2022-21484 was published Apr 20, 2022

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).... Low Unreviewed

CVE-2022-21485 was published Apr 20, 2022

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The... Low Unreviewed

CVE-2022-21488 was published Apr 20, 2022

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The... Low Unreviewed

CVE-2022-21487 was published Apr 20, 2022

Hard-coded credentials in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the... Low Unreviewed

CVE-2020-25168 was published Apr 15, 2022

Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability... Low Unreviewed

CVE-2022-24413 was published Apr 13, 2022

Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to... Low Unreviewed

CVE-2022-1157 was published Apr 12, 2022

Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get... Low Unreviewed

CVE-2022-25833 was published Apr 12, 2022

Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows... Low Unreviewed

CVE-2022-26090 was published Apr 12, 2022

Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows... Low Unreviewed

CVE-2022-27832 was published Apr 12, 2022

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker... Low Unreviewed

CVE-2022-28775 was published Apr 12, 2022

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,046 advisories