Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,765
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

11,384 advisories

Loading
Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt... Low Unreviewed
CVE-2005-4618 was published May 1, 2022
The procfs code (proc_misc.c) in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers... Low Unreviewed
CVE-2005-4605 was published May 1, 2022
Spb Kiosk Engine 1.0.0.1 stores the administrator's passcode in the registry in plaintext, which... Low Unreviewed
CVE-2005-4589 was published May 1, 2022
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log... Low Unreviewed
CVE-2005-4536 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in SPIP 1.8.2 and earlier allows remote attackers to... Low Unreviewed
CVE-2005-4494 was published May 1, 2022
Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI... Low Unreviewed
CVE-2005-4412 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in phpBB 2.0.18, when "Allowed HTML tags" is enabled,... Low Unreviewed
CVE-2005-4357 was published May 1, 2022
The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows... Low Unreviewed
CVE-2005-4352 was published May 1, 2022
Adobe (formerly Macromedia) ColdFusion MX 7.0 does not honor when the CFOBJECT /CreateObject(Java... Low Unreviewed
CVE-2005-4344 was published May 1, 2022
Multiple unspecified vulnerabilities in (1) getShell and (2) getCommand in IBM AIX 5.3 allow... Low Unreviewed
CVE-2005-4273 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in templates/tasklists/tasklists.inc in Horde... Low Unreviewed
CVE-2005-4191 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in templates/notepads/notepads.inc in Horde... Low Unreviewed
CVE-2005-4192 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8... Low Unreviewed
CVE-2005-4190 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith H3 before 2.0.6 allow... Low Unreviewed
CVE-2005-4189 was published May 1, 2022
Insyde BIOS V190 does not clear the keyboard buffer after reading the BIOS password during system... Low Unreviewed
CVE-2005-4175 was published May 1, 2022
AWARD Bios Modular 4.50pg does not clear the keyboard buffer after reading the BIOS password... Low Unreviewed
CVE-2005-4176 was published May 1, 2022
The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and... Low Unreviewed
CVE-2005-4151 was published May 1, 2022
Sun Update Connection in Sun Solaris 10, when configured to use a web proxy, allows local users... Low Unreviewed
CVE-2005-4133 was published May 1, 2022
Zen Cart 1.2.6d and earlier, under certain PHP configurations, allows remote attackers to obtain... Low Unreviewed
CVE-2005-3997 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote... Low Unreviewed
CVE-2005-3921 was published May 1, 2022
The ps2epsi extension shell script (ps2epsi.sh) in Inkscape before 0.41 allows local users to... Low Unreviewed
CVE-2005-3885 was published May 1, 2022
Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the ... Low Unreviewed
CVE-2005-3782 was published May 1, 2022
globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows... Low Unreviewed
CVE-2005-3738 was published May 1, 2022
jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump... Low Unreviewed
CVE-2005-3649 was published May 1, 2022
The management interface for VMware ESX Server 2.0.x before 2.0.2 patch 1, 2.1.x before 2.1.3... Low Unreviewed
CVE-2005-3620 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database