Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

12,030 advisories

Loading
Cross-site scripting (XSS) vulnerability in photocycle in Photocycle 1.0 allows remote attackers... Low Unreviewed
CVE-2006-3680 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in awstats.pl in AWStats 6.5 build 1.857 and... Low Unreviewed
CVE-2006-3681 was published May 1, 2022
Password Safe 2.11, 2.16 and 3.0BETA1 does not respect the configuration settings for locking the... Low Unreviewed
CVE-2006-3675 was published May 1, 2022
KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a denial of service (application... Low Unreviewed
CVE-2006-3672 was published May 1, 2022
Mercury Messenger, possibly 1.7.1.1 and other versions, when running on a multi-user Mac OS X... Low Unreviewed
CVE-2006-3669 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Index.PHP in CuteNews 1.4.5 allows remote attackers... Low Unreviewed
CVE-2006-3661 was published May 1, 2022
Unspecified vulnerability in Microsoft PowerPoint 2003 allows user-assisted attackers to cause... Low Unreviewed
CVE-2006-3656 was published May 1, 2022
Buffer overflow in wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers... Low Unreviewed
CVE-2006-3654 was published May 1, 2022
wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote attackers to cause a denial... Low Unreviewed
CVE-2006-3653 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the showtopic module in Koobi Pro CMS 5.6 allows... Low Unreviewed
CVE-2006-3620 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Phorum 5.1.14 allows remote attackers to inject... Low Unreviewed
CVE-2006-3612 was published May 1, 2022
vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the... Low Unreviewed
CVE-2006-3589 was published May 1, 2022
Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote attackers to... Low Unreviewed
CVE-2006-3588 was published May 1, 2022
Unknown vulnerability in the Buffer Overflow Protection in McAfee VirusScan Enterprise 8.0.0... Low Unreviewed
CVE-2006-3575 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and... Low Unreviewed
CVE-2006-3571 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in gallery/thumb.php in Winged Gallery 1.0 allows remote... Low Unreviewed
CVE-2006-3563 was published May 1, 2022
** DISPUTED ** EMC VMware Player allows user-assisted attackers to cause a denial of service ... Low Unreviewed
CVE-2006-3547 was published May 1, 2022
NCP Secure Enterprise Client (aka VPN/PKI client) 8.30 Build 59, and possibly earlier versions,... Low Unreviewed
CVE-2006-3551 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in F5 Networks FirePass 4100 5.x allow remote... Low Unreviewed
CVE-2006-3550 was published May 1, 2022
The Remote Data Service Object (RDS.DataControl) in Microsoft Internet Explorer 6 on Windows 2000... Low Unreviewed
CVE-2006-3510 was published May 1, 2022
The dynamic linker (dyld) in Apple Mac OS X 10.3.9 allows local users to obtain sensitive... Low Unreviewed
CVE-2006-3499 was published May 1, 2022
AFP Server in Apple Mac OS X 10.3.9 and 10.4.7 stores reconnect keys in a world-readable file,... Low Unreviewed
CVE-2006-3495 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ATutor before 1.5.3 allow remote attackers... Low Unreviewed
CVE-2006-3484 was published May 1, 2022
** DISPUTED ** Off-by-one buffer overflow in the Instance_options::complete_initialization... Low Unreviewed
CVE-2006-3486 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in maillist.php in PHPMailList 1.8.0 and earlier allows... Low Unreviewed
CVE-2006-3482 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database