Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,826
Erlang
36
GitHub Actions
32
Go
2,426
Maven
5,000+
npm
4,058
NuGet
723
pip
3,848
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,558 advisories

Loading
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user... Moderate Unreviewed
CVE-2006-0236 was published May 1, 2022
Multiple HTTP response splitting vulnerabilities in PHP 5.1.1 allow remote attackers to inject... Moderate Unreviewed
CVE-2006-0207 was published May 1, 2022
The proxy server feature in go-pear.php in PHP PEAR 0.2.2, as used in Apache2Triad, allows remote... High Unreviewed
CVE-2006-0144 was published May 1, 2022
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to... High Unreviewed
CVE-2006-0094 was published May 1, 2022
PHP remote file include vulnerability in includes/orderSuccess.inc.php in CubeCart allows remote... High Unreviewed
CVE-2006-0064 was published May 1, 2022
The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote... Moderate Unreviewed
CVE-2005-4874 was published May 1, 2022
PHP remote file include vulnerability in plog-admin-functions.php in Plogger Beta 2 allows remote... High Unreviewed
CVE-2005-4573 was published May 1, 2022
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users... Moderate Unreviewed
CVE-2005-4209 was published May 1, 2022
PHP remote file inclusion vulnerability in athena.php in Oliver May Athena PHP Website... High Unreviewed
CVE-2005-3860 was published May 1, 2022
PHP remote file inclusion vulnerability in content.php in phpGreetz 0.99 and earlier allows... High Unreviewed
CVE-2005-3861 was published May 1, 2022
PHP remote file inclusion vulnerability in q-news.php in Q-News 2.0 allows remote attackers to... High Unreviewed
CVE-2005-3859 was published May 1, 2022
PHP remote file inclusion vulnerability in support/index.php in DeskLance 2.3 and earlier allows... High Unreviewed
CVE-2005-3835 was published May 1, 2022
PHP remote file inclusion vulnerability in pollvote.php in PollVote allows remote attackers to... High Unreviewed
CVE-2005-3775 was published May 1, 2022
The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the First4Internet XCP DRM, has... High Unreviewed
CVE-2005-3650 was published May 1, 2022
PHP file inclusion vulnerability in protection.php in CodeGrrl (a) PHPCalendar 1.0, (b) PHPClique... Moderate Unreviewed
CVE-2005-3571 was published May 1, 2022
Multiple eval injection vulnerabilities in the help function in PHPKIT 1.6.1 R2 and earlier, when... Moderate Unreviewed
CVE-2005-3554 was published May 1, 2022
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute... High Unreviewed
CVE-2005-3302 was published May 1, 2022
Multiple eval injection vulnerabilities in PlainBlack Software WebGUI before 6.7.3 allow remote... High Unreviewed
CVE-2005-2837 was published May 1, 2022
Eval injection vulnerability in PHPXMLRPC 1.1.1 and earlier (PEAR XML-RPC for PHP), as used in... Moderate Unreviewed
CVE-2005-2498 was published May 1, 2022
PHP remote file inclusion vulnerability in start.php in Bitrix Site Manager 4.0.x allows remote... Moderate Unreviewed
CVE-2005-1996 was published May 1, 2022
PHP remote file inclusion vulnerability in siteframe.php for Broadpool Siteframe allows remote... High Unreviewed
CVE-2005-1965 was published May 1, 2022
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and... High Unreviewed
CVE-2005-1921 was published May 1, 2022
Direct code injection vulnerability in FlatNuke 2.5.3 allows remote attackers to execute... High Unreviewed
CVE-2005-1894 was published May 1, 2022
Direct code injection vulnerability in CuteNews 1.3.6 and earlier allows remote attackers with... Moderate Unreviewed
CVE-2005-1876 was published May 1, 2022
Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is... Moderate Unreviewed
CVE-2005-1527 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database