GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,478

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,270 advisories

Filter by severity

Sort by

Least recently updated

logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via... High Unreviewed

CVE-2006-6783 was published May 1, 2022

Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to... High Unreviewed

CVE-2006-5268 was published May 1, 2022

SQL-Ledger 2.4.4 through 2.6.17 authenticates users by verifying that the value of the sql-ledger... High Unreviewed

CVE-2006-4244 was published May 1, 2022

Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web... High Unreviewed

CVE-2006-3583 was published May 1, 2022

newsadmin.asp in Katy Whitton NewsCMSLite allows remote attackers to bypass authentication and... High Unreviewed

CVE-2006-2636 was published May 1, 2022

RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager,... High Unreviewed

CVE-2006-2369 was published May 1, 2022

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 has... High Unreviewed

CVE-2006-0374 was published May 1, 2022

functions.php in Ragnarok Online Control Panel (ROCP) 4.3.4a allows remote attackers to bypass... High Unreviewed

CVE-2005-4861 was published May 1, 2022

SAPID CMS before 1.2.3.03 allows remote attackers to bypass authentication via direct requests to... High Unreviewed

CVE-2005-4006 was published May 1, 2022

mtnpeak.net File Upload Manager does not properly check user authentication for certain actions,... High Unreviewed

CVE-2005-1957 was published May 1, 2022

Secure Shell (SSH) 2 in Cisco IOS 12.0 through 12.3 allows remote attackers to cause a denial of... High Unreviewed

CVE-2005-1020 was published May 1, 2022

acFTP 1.4 does not properly handle when an invalid password is provided by the user during... High Unreviewed

CVE-2002-2417 was published Apr 30, 2022

Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed ... High Unreviewed

CVE-2002-2397 was published Apr 30, 2022

Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote... High Unreviewed

CVE-2002-2279 was published Apr 30, 2022

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute... High Unreviewed

CVE-2001-0537 was published Apr 30, 2022

Windows NT does not properly download a system policy if the domain user logs into the domain... High Unreviewed

CVE-1999-0987 was published Apr 30, 2022

In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank... High Unreviewed

CVE-1999-0366 was published Apr 30, 2022

USU Oracle Optimization before 5.17.5 lacks Polkit authentication, which allows smartcollector... High Unreviewed

CVE-2022-29934 was published Apr 30, 2022

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with... High Unreviewed

CVE-2004-2734 was published Apr 29, 2022

LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server... High Unreviewed

CVE-2004-2724 was published Apr 29, 2022

edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain... High Unreviewed

CVE-2004-2715 was published Apr 29, 2022

Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user... High Unreviewed

CVE-2004-2182 was published Apr 29, 2022

The default installation of Cisco voice products, when running the IBM Director Agent on IBM... High Unreviewed

CVE-2004-1760 was published Apr 29, 2022

TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with... High Unreviewed

CVE-2003-1574 was published Apr 29, 2022

The web administration page for the Ericsson HM220dp ADSL modem does not require authentication,... High Unreviewed

CVE-2003-1442 was published Apr 29, 2022

Previous 1 2 … 46 47 48 49 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,270 advisories