GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,213
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,111
Maven 5,287
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 888
Swift 37

Unreviewed advisories

All unreviewed 243,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

957 advisories

Filter by severity

Sort by

Least recently updated

HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a... Low Unreviewed

CVE-2000-0972 was published Apr 30, 2022

DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite... Low Unreviewed

CVE-2000-0715 was published Apr 30, 2022

Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as ... Moderate Unreviewed

CVE-2000-0342 was published Apr 30, 2022

Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service ... High Unreviewed

CVE-1999-1593 was published Apr 30, 2022

Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows... Low Unreviewed

CVE-1999-1386 was published Apr 30, 2022

Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client... Moderate Unreviewed

CVE-1999-0981 was published Apr 30, 2022

Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file. Moderate Unreviewed

CVE-1999-0794 was published Apr 30, 2022

FreeBSD allows local users to conduct a denial of service by creating a hard link from a device... Moderate Unreviewed

CVE-1999-0783 was published Apr 30, 2022

wmFrog weather monitor 0.1.6 and other versions before 0.2.0 allows local users to overwrite... Low Unreviewed

CVE-2004-2473 was published Apr 29, 2022

Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack... Moderate Unreviewed

CVE-2004-1901 was published Apr 29, 2022

cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files... Moderate Unreviewed

CVE-2004-1603 was published Apr 29, 2022

KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations,... Moderate Unreviewed

CVE-2004-0689 was published Apr 29, 2022

The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red... Low Unreviewed

CVE-2004-0217 was published Apr 29, 2022

nsr_shutdown in Fujitsu Siemens NetWorker 6.0 allows local users to overwrite arbitrary files via... High Unreviewed

CVE-2003-1528 was published Apr 29, 2022

Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a... Moderate Unreviewed

CVE-2003-1492 was published Apr 29, 2022

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers,... Low Unreviewed

CVE-2003-1233 was published Apr 29, 2022

mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode... Low Unreviewed

CVE-2003-0844 was published Apr 29, 2022

cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root,... Moderate Unreviewed

CVE-2003-0578 was published Apr 29, 2022

Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link... Moderate Unreviewed

CVE-2022-24372 was published Apr 28, 2022

The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink... Moderate Unreviewed

CVE-2012-1093 was published Apr 23, 2022

Pacemaker before 1.1.6 configure script creates temporary files insecurely Moderate Unreviewed

CVE-2011-5271 was published Apr 23, 2022

Hardlink before 0.1.2 operates on full file system objects path names which can allow a local... High Unreviewed

CVE-2011-3632 was published Apr 22, 2022

openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system... High Unreviewed

CVE-2011-3351 was published Apr 22, 2022

foomatic-rip filter, all versions, used insecurely creates temporary files for storage of... Moderate Unreviewed

CVE-2011-2923 was published Apr 22, 2022

foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of... Moderate Unreviewed

CVE-2011-2924 was published Apr 22, 2022

Previous 1 2 … 35 36 37 38 39 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

957 advisories