Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,551 advisories

Loading
PHP remote file inclusion vulnerability in tell_a_friend.inc.php for Tell A Friend Script 2.7... High Unreviewed
CVE-2005-0679 was published May 1, 2022
PHP remote file inclusion vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote... High Unreviewed
CVE-2005-0103 was published May 1, 2022
Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to... High Unreviewed
CVE-2002-2319 was published Apr 30, 2022
PHP remote file inclusion vulnerability in quick_reply.php for phpBB Advanced Quick Reply Hack 1... High Unreviewed
CVE-2002-2287 was published Apr 30, 2022
PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute... High Unreviewed
CVE-2002-2249 was published Apr 30, 2022
PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a. Exchange... High Unreviewed
CVE-2002-2019 was published Apr 30, 2022
PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the... High Unreviewed
CVE-2002-1991 was published Apr 30, 2022
csSearch.cgi in csSearch 2.3 and earlier allows remote attackers to execute arbitrary Perl code... High Unreviewed
CVE-2002-0495 was published Apr 30, 2022
UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote... High Unreviewed
CVE-2001-0308 was published Apr 30, 2022
Bajie HTTP JServer 0.78, and other versions before 0.80, allows remote attackers to execute... High Unreviewed
CVE-2001-0307 was published Apr 30, 2022
Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local... High Unreviewed
CVE-2000-0155 was published Apr 30, 2022
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import... High Unreviewed
CVE-1999-0702 was published Apr 30, 2022
Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site,... High Unreviewed
CVE-1999-0509 was published Apr 30, 2022
Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to inject arbitrary code... High Unreviewed
CVE-2004-1926 was published Apr 29, 2022
Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as... High Unreviewed
CVE-2004-1423 was published Apr 29, 2022
CRLF injection vulnerability in Microsoft Internet Explorer 6.0.2800.1106 and earlier allows... High Unreviewed
CVE-2004-1166 was published Apr 29, 2022
PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2)... High Unreviewed
CVE-2004-0285 was published Apr 29, 2022
PHP remote file inclusion vulnerability in wp-links/links.all.php in WordPress 0.70 allows remote... High Unreviewed
CVE-2003-1599 was published Apr 29, 2022
Kerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP... High Unreviewed
CVE-2003-1491 was published Apr 29, 2022
Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2003-1432 was published Apr 29, 2022
PHP remote file inclusion vulnerability in D-Forum 1.00 through 1.11 allows remote attackers to... High Unreviewed
CVE-2003-1406 was published Apr 29, 2022
PHP remote file inclusion vulnerability in Bookmark4U 1.8.3 allows remote attackers to execute... High Unreviewed
CVE-2003-1253 was published Apr 29, 2022
PHP remote file inclusion vulnerability in CuteNews 0.88 allows remote attackers to execute... High Unreviewed
CVE-2003-1240 was published Apr 29, 2022
PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on... High Unreviewed
CVE-2003-1227 was published Apr 29, 2022
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows... High Unreviewed
CVE-2003-0498 was published Apr 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database