GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
981 advisories
Filter by severity
CUPS on Mandriva Linux 2008.0, 2008.1, 2009.0, Corporate Server (CS) 3.0 and 4.0, and Multi...
Moderate
Unreviewed
CVE-2009-0032
was published
May 2, 2022
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify...
High
Unreviewed
CVE-2008-4580
was published
May 2, 2022
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly ...
Low
Unreviewed
CVE-2008-4579
was published
May 2, 2022
qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite...
High
Unreviewed
CVE-2008-4553
was published
May 2, 2022
ibackup 2.27 allows local users to overwrite arbitrary files via a symlink attack on temporary...
High
Unreviewed
CVE-2008-4475
was published
May 2, 2022
alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink...
High
Unreviewed
CVE-2008-4477
was published
May 2, 2022
sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on...
Moderate
Unreviewed
CVE-2008-4476
was published
May 2, 2022
freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a...
High
Unreviewed
CVE-2008-4474
was published
May 2, 2022
The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a...
High
Unreviewed
CVE-2008-4440
was published
May 2, 2022
A certain Debian patch to the run scripts for sabre (aka xsabre) 0.2.4b allows local users to...
High
Unreviewed
CVE-2008-4406
was published
May 2, 2022
Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application...
Moderate
Unreviewed
CVE-2008-4284
was published
May 2, 2022
The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local...
Moderate
Unreviewed
CVE-2008-4192
was published
May 2, 2022
The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local...
Moderate
Unreviewed
CVE-2008-4190
was published
May 2, 2022
extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a...
Moderate
Unreviewed
CVE-2008-4191
was published
May 2, 2022
Open redirect vulnerability in admin/auth.php in NooMS 1.1 allows remote attackers to redirect...
Moderate
Unreviewed
CVE-2008-4162
was published
May 2, 2022
Tools/faqwiz/move-faqwiz.sh (aka the generic FAQ wizard moving tool) in Python 2.4.5 might allow...
High
Unreviewed
CVE-2008-4108
was published
May 2, 2022
MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE...
Moderate
Unreviewed
CVE-2008-4098
was published
May 2, 2022
plaiter in Plait before 1.6 allows local users to overwrite arbitrary files via a symlink attack...
Moderate
Unreviewed
CVE-2008-4085
was published
May 2, 2022
The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary...
Moderate
Unreviewed
CVE-2008-3946
was published
May 2, 2022
migrate_aliases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a...
Moderate
Unreviewed
CVE-2008-3930
was published
May 2, 2022
genmsgidx in Tiger 3.2.2 allows local users to overwrite or delete arbitrary files via a symlink...
High
Unreviewed
CVE-2008-3927
was published
May 2, 2022
javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on...
Moderate
Unreviewed
CVE-2008-3931
was published
May 2, 2022
gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink...
High
Unreviewed
CVE-2008-3929
was published
May 2, 2022
test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack...
Moderate
Unreviewed
CVE-2008-3928
was published
May 2, 2022
configvar in Caudium 1.4.12 allows local users to overwrite arbitrary files via a symlink attack...
High
Unreviewed
CVE-2008-3883
was published
May 2, 2022
ProTip!
Advisories are also available from the
GraphQL API