GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,182
Composer 4,801
Erlang 36
GitHub Actions 29
Go 2,382
Maven 5,762
npm 4,011
NuGet 720
pip 3,810
Pub 12
RubyGems 930
Rust 987
Swift 38

Unreviewed advisories

All unreviewed 262,875

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,001 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Multiple PHP remote file inclusion vulnerabilities in TalkBack 2.2.7 allow remote attackers to... Moderate Unreviewed

CVE-2007-6105 was published May 1, 2022

PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1... Moderate Unreviewed

CVE-2007-6325 was published May 1, 2022

CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows remote user-assisted web... Moderate Unreviewed

CVE-2008-0417 was published May 1, 2022

CRLF injection vulnerability in index.php in ExpressionEngine 1.2.1 and earlier allows remote... Moderate Unreviewed

CVE-2008-0202 was published May 1, 2022

PHP remote file inclusion vulnerability in code/display.php in fuzzylime (cms) 3.01 allows remote... Moderate Unreviewed

CVE-2008-1405 was published May 1, 2022

Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images... Moderate Unreviewed

CVE-2008-1081 was published May 1, 2022

Multiple PHP remote file inclusion vulnerabilities in just another flat file (JAF) CMS 4.0 RC2... Moderate Unreviewed

CVE-2008-1609 was published May 1, 2022

ExBB Italia 0.22 and earlier only checks GET requests that use the QUERY_STRING for certain path... Moderate Unreviewed

CVE-2008-1862 was published May 1, 2022

Linux kernel before 2.6.25.2 does not apply a certain protection mechanism for fcntl... Moderate Unreviewed

CVE-2008-1669 was published May 1, 2022

PHP remote file inclusion vulnerability in includes/init.php in phpFan 3.3.4 allows remote... Moderate Unreviewed

CVE-2008-6251 was published May 17, 2022

PHP remote file inclusion vulnerability in html/admin/modules/plugin_admin.php in HoMaP-CMS 0.1... Moderate Unreviewed

CVE-2008-6740 was published May 17, 2022

Android 1.5 CRBxx allows local users to bypass the (1) Manifest.permission.CAMERA (aka android... Moderate Unreviewed

CVE-2009-2348 was published May 2, 2022

Argument injection vulnerability in (1) src/content/js/connection/sftp.js and (2) src/content/js... Moderate Unreviewed

CVE-2009-3478 was published May 2, 2022

Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions... Moderate Unreviewed

CVE-2009-3890 was published May 2, 2022

RaspAP Vulnerable to Code Injection via an Unknown Process in File `includes/provider.php` Moderate

CVE-2024-2497 was published for billz/raspap-webgui (Composer) Mar 15, 2024

Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side... Moderate Unreviewed

CVE-2024-3788 was published May 14, 2024

There is an HTML injection vulnerability in Esri Portal for ArcGIS <=11.0 that may allow a remote... Moderate Unreviewed

CVE-2024-25706 was published Apr 4, 2024

Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to... Moderate Unreviewed

CVE-2010-0187 was published May 2, 2022

Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to... Moderate Unreviewed

CVE-2010-0988 was published May 2, 2022

Multiple PHP remote file inclusion vulnerabilities in DynPG CMS 4.1.0, and possibly earlier, when... Moderate Unreviewed

CVE-2010-1299 was published May 2, 2022

The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3,... Moderate Unreviewed

CVE-2010-1255 was published May 2, 2022

PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter... Moderate Unreviewed

CVE-2010-2314 was published May 17, 2022

Opera before 10.61 does not properly suppress clicks on download dialogs that became visible... Moderate Unreviewed

CVE-2010-2576 was published May 14, 2022

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products,... Moderate Unreviewed

CVE-2010-3429 was published May 14, 2022

The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and... Moderate Unreviewed

CVE-2010-2761 was published May 17, 2022

Previous 1 2 … 35 36 37 38 39 40 41 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,001 advisories