Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

12,266 advisories

Loading
The ReiserFS functionality in Linux kernel 2.6.18, and possibly other versions, allows local... Low Unreviewed
CVE-2006-6128 was published May 1, 2022
Coppermine Photo Gallery (CPG) 1.4.8 stable, with register_globals enabled, allows remote... Low Unreviewed
CVE-2006-6123 was published May 1, 2022
Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2... Low Unreviewed
CVE-2006-6107 was published May 1, 2022
Directory traversal vulnerability in the cached_album function in functions.php for mAlbum 0.3... Low Unreviewed
CVE-2006-6068 was published May 1, 2022
Integer signedness error in the fw_ioctl (FW_IOCTL) function in the FireWire (IEEE-1394) drivers ... Low Unreviewed
CVE-2006-6013 was published May 1, 2022
XLineSoft PHPRunner 3.1 stores the (1) database server name, (2) database names, (3) usernames,... Low Unreviewed
CVE-2006-5956 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow remote authenticated users... Low Unreviewed
CVE-2006-5883 was published May 1, 2022
openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink... Low Unreviewed
CVE-2006-5851 was published May 1, 2022
The keystore file in Unicore Client before 5.6 build 5, when running on Unix systems, has... Low Unreviewed
CVE-2006-5842 was published May 1, 2022
prl_dhcpd in Parallels Desktop for Mac Build 1940 uses insecure permissions (0666) for /Library... Low Unreviewed
CVE-2006-5817 was published May 1, 2022
SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when configured to spawn a web browser... Low Unreviewed
CVE-2006-5806 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in default.asp in xenis.creator CMS allows remote... Low Unreviewed
CVE-2006-5800 was published May 1, 2022
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12... Low Unreviewed
CVE-2006-5793 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow... Low Unreviewed
CVE-2006-5791 was published May 1, 2022
Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18... Low Unreviewed
CVE-2006-5757 was published May 1, 2022
The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel... Low Unreviewed
CVE-2006-5749 was published May 1, 2022
Multiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated... Low Unreviewed
CVE-2006-5738 was published May 1, 2022
Heap-based buffer overflow the "Answering Service" function in ICQ 2003b Build 3916 allows local... Low Unreviewed
CVE-2006-5724 was published May 1, 2022
QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote... Low Unreviewed
CVE-2006-5681 was published May 1, 2022
PAM_extern before 0.2 sends a password as a command line argument, which allows local users to... Low Unreviewed
CVE-2006-5659 was published May 1, 2022
Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet... Low Unreviewed
CVE-2006-5614 was published May 1, 2022
The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18... Low Unreviewed
CVE-2006-5619 was published May 1, 2022
Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files... Low Unreviewed
CVE-2006-5600 was published May 1, 2022
Microsoft Internet Explorer 6 and earlier allows remote attackers to read Temporary Internet... Low Unreviewed
CVE-2006-5578 was published May 1, 2022
Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when... Low Unreviewed
CVE-2006-5511 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database