Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,241
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,511
Pub
12
RubyGems
997
Rust
1,189
Swift
51
Unreviewed advisories
All unreviewed
5,000+

13,517 advisories

Loading
PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to... Low Unreviewed
CVE-2010-3691 was published May 13, 2022
APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import... Low Unreviewed
CVE-2012-3587 was published May 13, 2022
PHPUnit extension for TYPO3 vulnerable to Cross-site Scripting Low
CVE-2013-4744 was published for oliverklee/phpunit (Composer) May 13, 2022
methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails... Low Unreviewed
CVE-2011-3634 was published May 13, 2022
APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import... Low Unreviewed
CVE-2012-0954 was published May 13, 2022
Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16... Low Unreviewed
CVE-2012-0961 was published May 13, 2022
The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a... Low Unreviewed
CVE-2014-7206 was published May 13, 2022
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the... Low Unreviewed
CVE-2010-4021 was published May 13, 2022
The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT... Low Unreviewed
CVE-2014-5351 was published May 13, 2022
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4... Low Unreviewed
CVE-2013-1417 was published May 13, 2022
plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x... Low Unreviewed
CVE-2014-5354 was published May 13, 2022
The installer in PEAR before 1.9.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2011-1072 was published May 13, 2022
The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2011-1144 was published May 13, 2022
The Boat Browser application before 4.2 and Boat Browser Mini application before 3.9 for Android... Low Unreviewed
CVE-2012-5179 was published May 13, 2022
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11... Low Unreviewed
CVE-2014-0595 was published May 13, 2022
The AliasHandler component in PostfixAdmin before 3.0.2 allows remote authenticated domain admins... Low Unreviewed
CVE-2017-5930 was published May 13, 2022
The feh_unique_filename function in utils.c in feh 1.11.2 and earlier might allow local users to... Low Unreviewed
CVE-2011-1031 was published May 13, 2022
The feh_unique_filename function in utils.c in feh before 1.11.2 might allow local users to... Low Unreviewed
CVE-2011-0702 was published May 13, 2022
EMC RSA Authentication Manager 8.0 before P2 and 7.1 before SP4 P26, as used in Appliance 3.0,... Low Unreviewed
CVE-2013-3273 was published May 13, 2022
Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6... Low Unreviewed
CVE-2012-3954 was published May 13, 2022
The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does not properly maintain... Low Unreviewed
CVE-2012-5539 was published May 13, 2022
F-Secure Anti-Virus, Safe Anywhere, and PSB Workstation Security before 11500 for Mac OS X allows... Low Unreviewed
CVE-2012-6646 was published May 13, 2022
The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode,... Low Unreviewed
CVE-2013-2061 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2013-7421 was published May 13, 2022
Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a... Low Unreviewed
CVE-2011-2784 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database