GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,424
Composer 4,677
Erlang 34
GitHub Actions 26
Go 2,265
Maven 5,535
npm 3,918
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 944
Swift 38

Unreviewed advisories

All unreviewed 253,574

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

974 advisories

Filter by severity

Sort by

Least recently updated

PHP remote file inclusion vulnerability in start.php in Bitrix Site Manager 4.0.x allows remote... Moderate Unreviewed

CVE-2005-1996 was published May 1, 2022

Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with... Moderate Unreviewed

CVE-2005-1876 was published May 1, 2022

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is... Moderate Unreviewed

CVE-2005-1527 was published May 1, 2022

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT... Moderate Unreviewed

CVE-2005-0709 was published May 1, 2022

PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared... Moderate Unreviewed

CVE-2005-0227 was published May 1, 2022

PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows... Moderate Unreviewed

CVE-2002-2299 was published Apr 30, 2022

PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote... Moderate Unreviewed

CVE-2002-2297 was published Apr 30, 2022

PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote... Moderate Unreviewed

CVE-2002-2298 was published Apr 30, 2022

csGuestbook.cgi in CGISCRIPT.NET csGuestbook 1.0 allows remote attackers to execute arbitrary... Moderate Unreviewed

CVE-2002-1750 was published Apr 30, 2022

csNewsPro.cgi in CGIScript.net csNews Professional (csNewsPro) allows remote attackers to execute... Moderate Unreviewed

CVE-2002-1753 was published Apr 30, 2022

csChatRBox.cgi in CGIScript.net csChat-R-Box allows remote attackers to execute arbitrary Perl... Moderate Unreviewed

CVE-2002-1752 was published Apr 30, 2022

The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files... Moderate Unreviewed

CVE-1999-0891 was published Apr 30, 2022

PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows... Moderate Unreviewed

CVE-2004-2740 was published Apr 29, 2022

PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers... Moderate Unreviewed

CVE-2004-1419 was published Apr 29, 2022

Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with... Moderate Unreviewed

CVE-2004-0637 was published Apr 29, 2022

PHP remote file inclusion vulnerability in _functions.php in cpCommerce 0.5f allows remote... Moderate Unreviewed

CVE-2003-1500 was published Apr 29, 2022

Multiple PHP remote file inclusion vulnerabilities in ttCMS 2.2 and ttForum allow remote... Moderate Unreviewed

CVE-2003-1459 was published Apr 29, 2022

PHP remote file inclusion vulnerability in nukebrowser.php in Nukebrowser 2.1 to 2.5 allows... Moderate Unreviewed

CVE-2003-1436 was published Apr 29, 2022

PHP remote file inclusion vulnerability in emailreader_execute_on_each_page.inc.php in Cedric... Moderate Unreviewed

CVE-2003-1411 was published Apr 29, 2022

PHP remote file inclusion vulnerability in email.php (aka email.php3) in Cedric Email Reader 0.2... Moderate Unreviewed

CVE-2003-1410 was published Apr 29, 2022

PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0... Moderate Unreviewed

CVE-2003-1412 was published Apr 29, 2022

ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code,... Moderate Unreviewed

CVE-2003-1385 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible Moderate Unreviewed

CVE-2022-29813 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible Moderate Unreviewed

CVE-2022-29815 was published Apr 29, 2022

Chamilo LMS v1.11.14 was discovered to contain a zero click code injection vulnerability which... Moderate Unreviewed

CVE-2021-38745 was published Mar 22, 2022

Previous 1 2 … 35 36 37 38 39 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

974 advisories