Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,764
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

11,379 advisories

Loading
Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page... Low Unreviewed
CVE-2005-2517 was published May 1, 2022
Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote... Low Unreviewed
CVE-2005-2512 was published May 1, 2022
Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is... Low Unreviewed
CVE-2005-2509 was published May 1, 2022
slocate before 2.7 does not properly process very long paths, which allows local users to cause a... Low Unreviewed
CVE-2005-2499 was published May 1, 2022
The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a... Low Unreviewed
CVE-2005-2492 was published May 1, 2022
Unknown vulnerability in Sun McData switches and directors 4300, 4500, 6064, and 6140 before E/OS... Low Unreviewed
CVE-2005-2487 was published May 1, 2022
Kayako liveResponse 2.x, when logging in a user, records the password in plaintext in the URL,... Low Unreviewed
CVE-2005-2462 was published May 1, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6... Low Unreviewed
CVE-2005-2456 was published May 1, 2022
Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on... Low Unreviewed
CVE-2005-2451 was published May 1, 2022
Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files... Low Unreviewed
CVE-2005-2449 was published May 1, 2022
Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a... Low Unreviewed
CVE-2005-2444 was published May 1, 2022
FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application... Low Unreviewed
CVE-2005-2426 was published May 1, 2022
Race condition in the xpcom library, as used by web browsers such as Firefox, Mozilla, Netscape,... Low Unreviewed
CVE-2005-2414 was published May 1, 2022
run-mozilla.sh in Thunderbird, with debugging enabled, allows local users to create or overwrite... Low Unreviewed
CVE-2005-2353 was published May 1, 2022
Research in Motion (RIM) BlackBerry Handheld web browser for BlackBerry Handheld before 4.0.2... Low Unreviewed
CVE-2005-2343 was published May 1, 2022
Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when under heavy load, causes... Low Unreviewed
CVE-2005-2306 was published May 1, 2022
PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not... Low Unreviewed
CVE-2005-2302 was published May 1, 2022
SMS 1.9.2m and earlier allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed
CVE-2005-2311 was published May 1, 2022
Skype 1.1.0.20 and earlier allows local users to overwrite arbitrary files via a symlink attack... Low Unreviewed
CVE-2005-2300 was published May 1, 2022
Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, ... Low Unreviewed
CVE-2005-2292 was published May 1, 2022
Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is... Low Unreviewed
CVE-2005-2293 was published May 1, 2022
Oracle Forms 4.5, 6.0, 6i, and 9i on Unix, when a large number of records are retrieved by an... Low Unreviewed
CVE-2005-2294 was published May 1, 2022
WebEOC before 6.0.2 does not properly restrict the size of an uploaded file, which allows remote... Low Unreviewed
CVE-2005-2283 was published May 1, 2022
Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box... Low Unreviewed
CVE-2005-2268 was published May 1, 2022
Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web... Low Unreviewed
CVE-2005-2274 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database