Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,270 advisories

Loading
index.php in Desi Short URL Script 1.0 allows remote attackers to bypass authentication by... High Unreviewed
CVE-2009-2642 was published May 2, 2022
The Internet Authentication Service (IAS) in Microsoft Windows Vista SP2 and Server 2008 SP2 does... High Unreviewed
CVE-2009-2505 was published May 2, 2022
The local_handler_callback function in server/responder/pam/pam_LOCAL_domain.c in sssd 0.4.1 does... High Unreviewed
CVE-2009-2410 was published May 2, 2022
admin.php in phpMyBlockchecker 1.0.0055 allows remote attackers to bypass authentication and gain... High Unreviewed
CVE-2009-2382 was published May 2, 2022
admin/edit_user.php in KerviNet Forum 1.1 and earlier does not require administrative... High Unreviewed
CVE-2009-2328 was published May 2, 2022
The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote... High Unreviewed
CVE-2009-2257 was published May 2, 2022
The admin interface in AWScripts.com Gallery Search Engine 1.5 allows remote attackers to bypass... High Unreviewed
CVE-2009-2233 was published May 2, 2022
MIDAS 1.43 allows remote attackers to bypass authentication and obtain administrative access via... High Unreviewed
CVE-2009-2231 was published May 2, 2022
cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier sends a redirect to the web... High Unreviewed
CVE-2009-2168 was published May 2, 2022
uye_paneli.php in phPortal 1.0 allows remote attackers to bypass authentication and obtain... High Unreviewed
CVE-2009-2117 was published May 2, 2022
The Servlet Engine/Web Container component in IBM WebSphere Application Server (WAS) 6.1 before 6... High Unreviewed
CVE-2009-2088 was published May 2, 2022
The Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.25 and 7.0... High Unreviewed
CVE-2009-2085 was published May 2, 2022
admin/options.php in Grestul 1.2 does not properly restrict access, which allows remote attackers... High Unreviewed
CVE-2009-2040 was published May 2, 2022
Ascad Networks Password Protector SD 1.3.1 allows remote attackers to bypass authentication and... High Unreviewed
CVE-2009-2003 was published May 2, 2022
Million Dollar Text Links 1.0 allows remote attackers to bypass authentication and gain... High Unreviewed
CVE-2009-1854 was published May 2, 2022
user/index.php in TCPDB 3.8 does not require administrative authentication, which allows remote... High Unreviewed
CVE-2009-1670 was published May 2, 2022
myaccount.php in Easy Scripts Answer and Question Script does not verify the original password... High Unreviewed
CVE-2009-1664 was published May 2, 2022
Techno Dreams Job Career Package 3.0 allows remote attackers to bypass authentication and obtain... High Unreviewed
CVE-2009-1638 was published May 2, 2022
Teraway LinkTracker 1.0 allows remote attackers to bypass authentication and gain administrative... High Unreviewed
CVE-2009-1617 was published May 2, 2022
Teraway LiveHelp 2.0 allows remote attackers to bypass authentication and gain administrative... High Unreviewed
CVE-2009-1618 was published May 2, 2022
Teraway FileStream 1.0 allows remote attackers to bypass authentication and gain administrative... High Unreviewed
CVE-2009-1619 was published May 2, 2022
index.php in PHP Site Lock 2.0 allows remote attackers to bypass authentication and obtain... High Unreviewed
CVE-2009-1587 was published May 2, 2022
AGTC MyShop 3.2b allows remote attackers to bypass authentication and obtain administrative... High Unreviewed
CVE-2009-1549 was published May 2, 2022
The WebDAV extension in Microsoft Internet Information Services (IIS) 5.1 and 6.0 allows remote... High Unreviewed
CVE-2009-1535 was published May 2, 2022
Absolute Form Processor XE 1.5 allows remote attackers to bypass authentication and gain... High Unreviewed
CVE-2009-1504 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database