GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,478

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,270 advisories

Filter by severity

Sort by

Least recently updated

includes/user.php in Fungamez RC1 allows remote attackers to bypass authentication and gain... High Unreviewed

CVE-2009-1489 was published May 2, 2022

Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.1(1) through 7... High Unreviewed

CVE-2009-1155 was published May 2, 2022

The WebDAV extension in Microsoft Internet Information Services (IIS) 5.0 on Windows 2000 SP4... High Unreviewed

CVE-2009-1122 was published May 2, 2022

The web interface on the snom VoIP phones snom 300, snom 320, snom 360, snom 370, and snom 820... High Unreviewed

CVE-2009-1048 was published May 2, 2022

Bloginator 1A allows remote attackers to bypass authentication and gain administrative access by... High Unreviewed

CVE-2009-1050 was published May 2, 2022

S-Cms 1.1 Stable allows remote attackers to bypass authentication and obtain administrative... High Unreviewed

CVE-2009-0864 was published May 2, 2022

hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which... High Unreviewed

CVE-2009-0695 was published May 2, 2022

OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed... High Unreviewed

CVE-2009-0653 was published May 2, 2022

Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0... High Unreviewed

CVE-2009-0614 was published May 2, 2022

Unspecified vulnerability in SimpleIrcBot before 1.0 Stable has unknown impact and attack vectors... High Unreviewed

CVE-2009-0492 was published May 2, 2022

Whole Hog Ware Support 1.x allows remote attackers to bypass authentication and obtain... High Unreviewed

CVE-2009-0460 was published May 2, 2022

Whole Hog Password Protect: Enhanced 1.x allows remote attackers to bypass authentication and... High Unreviewed

CVE-2009-0461 was published May 2, 2022

The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate... High Unreviewed

CVE-2009-0412 was published May 2, 2022

Asp Project Management 1.0 allows remote attackers to bypass authentication and gain... High Unreviewed

CVE-2009-0280 was published May 2, 2022

servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication... High Unreviewed

CVE-2009-0138 was published May 2, 2022

The Secure Channel (aka SChannel) authentication component in Microsoft Windows 2000 SP4, XP SP2... High Unreviewed

CVE-2009-0085 was published May 2, 2022

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service (OOPS)... High Unreviewed

CVE-2008-4576 was published May 2, 2022

Blue Coat K9 Web Protection 4.0.230 Beta relies on client-side JavaScript as a protection... High Unreviewed

CVE-2008-4515 was published May 2, 2022

changepassword.php in Phlatline's Personal Information Manager (pPIM) 1.0 and earlier does not... High Unreviewed

CVE-2008-4427 was published May 2, 2022

Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not... High Unreviewed

CVE-2008-4389 was published May 2, 2022

Rianxosencabos CMS 0.9 allows remote attackers to bypass authentication and gain administrative... High Unreviewed

CVE-2008-4244 was published May 2, 2022

Podcast Producer in Apple Mac OS X 10.5 before 10.5.6 allows remote attackers to bypass... High Unreviewed

CVE-2008-4223 was published May 2, 2022

admin/login.php in Stash 1.0.3 allows remote attackers to bypass authentication and gain... High Unreviewed

CVE-2008-4081 was published May 2, 2022

Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold... High Unreviewed

CVE-2008-4037 was published May 2, 2022

Microsoft Office SharePoint Server 2007 Gold and SP1 and Microsoft Search Server 2008 do not... High Unreviewed

CVE-2008-4032 was published May 2, 2022

Previous 1 2 … 41 42 43 44 45 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,270 advisories