Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,250 advisories

Loading
GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript... Low Unreviewed
CVE-2002-0044 was published Apr 30, 2022
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical... Low Unreviewed
CVE-2001-1578 was published Apr 30, 2022
The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user... Low Unreviewed
CVE-2001-1593 was published Apr 30, 2022
setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce... Low Unreviewed
CVE-2001-1564 was published Apr 30, 2022
Windows XP with fast user switching and account lockout enabled allows local users to deny user... Low Unreviewed
CVE-2001-1570 was published Apr 30, 2022
Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the... Low Unreviewed
CVE-2001-1565 was published Apr 30, 2022
ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering... Low Unreviewed
CVE-2001-1548 was published Apr 30, 2022
Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to... Low Unreviewed
CVE-2001-1560 was published Apr 30, 2022
Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP... Low Unreviewed
CVE-2001-1549 was published Apr 30, 2022
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead... Low Unreviewed
CVE-2001-1559 was published Apr 30, 2022
CentraOne 5.2 and Centra ASP with basic authentication enabled creates world-writable base64... Low Unreviewed
CVE-2001-1550 was published Apr 30, 2022
Linux kernel 2.2.19 enables CAP_SYS_RESOURCE for setuid processes, which allows local users to... Low Unreviewed
CVE-2001-1551 was published Apr 30, 2022
mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable... Low Unreviewed
CVE-2001-1534 was published Apr 30, 2022
Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to... Low Unreviewed
CVE-2001-1521 was published Apr 30, 2022
easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which... Low Unreviewed
CVE-2001-1527 was published Apr 30, 2022
Xircom REX 6000 allows local users to obtain the 10 digit PIN by starting a serial monitor,... Low Unreviewed
CVE-2001-1520 was published Apr 30, 2022
** DISPUTED ** RunAs (runas.exe) in Windows 2000 allows local users to create a spoofed named... Low Unreviewed
CVE-2001-1519 was published Apr 30, 2022
** DISPUTED ** RunAs (runas.exe) in Windows 2000 stores cleartext authentication information in... Low Unreviewed
CVE-2001-1517 was published Apr 30, 2022
RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local... Low Unreviewed
CVE-2001-1518 was published Apr 30, 2022
The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows... Low Unreviewed
CVE-2001-1503 was published Apr 30, 2022
Microsoft Internet Explorer 4.0 through 6.0 could allow local users to differentiate between... Low Unreviewed
CVE-2001-1497 was published Apr 30, 2022
script command in the util-linux package before 2.11n allows local users to overwrite arbitrary... Low Unreviewed
CVE-2001-1494 was published Apr 30, 2022
smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete... Low Unreviewed
CVE-2001-1479 was published Apr 30, 2022
Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service ... Low Unreviewed
CVE-2001-1450 was published Apr 30, 2022
Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series... Low Unreviewed
CVE-2001-1439 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database