GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,330
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
155 advisories
Filter by severity
Certain patch-installation scripts in Oracle Solaris allow local users to append data to...
Low
Unreviewed
CVE-2010-1183
was published
May 2, 2022
GNU nano before 2.2.4 does not verify whether a file has been changed before it is overwritten in...
Low
Unreviewed
CVE-2010-1160
was published
May 2, 2022
fcrontab in fcron before 3.0.5 allows local users to read arbitrary files via a symlink attack on...
Low
Unreviewed
CVE-2010-0792
was published
May 2, 2022
fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an...
Low
Unreviewed
CVE-2010-0789
was published
May 2, 2022
Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows local users to delete...
Low
Unreviewed
CVE-2010-0546
was published
May 2, 2022
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron)...
Low
Unreviewed
CVE-2010-0424
was published
May 2, 2022
Bournal before 1.4.1 allows local users to overwrite arbitrary files via a symlink attack on...
Low
Unreviewed
CVE-2010-0118
was published
May 2, 2022
The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib...
Low
Unreviewed
CVE-2009-5080
was published
May 2, 2022
The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*...
Low
Unreviewed
CVE-2009-5082
was published
May 2, 2022
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl...
Low
Unreviewed
CVE-2009-5081
was published
May 2, 2022
The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU...
Low
Unreviewed
CVE-2009-5079
was published
May 2, 2022
The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite...
Low
Unreviewed
CVE-2009-5007
was published
May 2, 2022
Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain...
Low
Unreviewed
CVE-2009-4664
was published
May 2, 2022
vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite...
Low
Unreviewed
CVE-2009-4454
was published
May 2, 2022
Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the ...
Low
Unreviewed
CVE-2009-4193
was published
May 2, 2022
GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink...
Low
Unreviewed
CVE-2009-3304
was published
May 2, 2022
Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an...
Low
Unreviewed
CVE-2009-1753
was published
May 2, 2022
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly ...
Low
Unreviewed
CVE-2008-4579
was published
May 2, 2022
The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in...
Low
Unreviewed
CVE-2008-3699
was published
May 2, 2022
lib/prefs.tcl in Cecilia 2.0.5 allows local users to overwrite arbitrary files via a symlink...
Low
Unreviewed
CVE-2008-1832
was published
May 1, 2022
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files...
Low
Unreviewed
CVE-2008-1569
was published
May 1, 2022
acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a...
Low
Unreviewed
CVE-2008-0883
was published
May 1, 2022
wyrd 1.4.3b allows local users to overwrite arbitrary files via a symlink attack on the wyrd-tmp....
Low
Unreviewed
CVE-2008-0806
was published
May 1, 2022
The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown...
Low
Unreviewed
CVE-2008-0732
was published
May 1, 2022
Website META Language (WML) 2.0.11 allows local users to overwrite arbitrary files via a symlink...
Low
Unreviewed
CVE-2008-0666
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API