Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,608
Erlang
33
GitHub Actions
25
Go
2,221
Maven
5,000+
npm
3,893
NuGet
701
pip
3,659
Pub
12
RubyGems
913
Rust
942
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,780 advisories

Loading
Cross-site scripting (XSS) vulnerability in Andrew Godwin ByteHoard 2.1 and earlier allows remote... Low Unreviewed
CVE-2006-2632 was published May 1, 2022
Novell Client for Windows 4.8 and 4.9 does not restrict access to the clipboard contents while a... Low Unreviewed
CVE-2006-2612 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in view.php in phpRaid 2.9.5 allows remote attackers to... Low Unreviewed
CVE-2006-2610 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in index.php in DGBook 1.0 allows remote attackers to... Low Unreviewed
CVE-2006-2572 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in search.html in Alkacon OpenCms 6.0.0, 6.0.2, and 6.0... Low Unreviewed
CVE-2006-2571 was published May 1, 2022
The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read... Low Unreviewed
CVE-2006-2563 was published May 1, 2022
Unspecified vulnerability in the kernel in HP-UX B.11.00 allows local users to cause an... Low Unreviewed
CVE-2006-2551 was published May 1, 2022
xmcdconfig in xmcd for Debian GNU/Linux 2.6-17.1 creates /var/lib/cddb and /var/lib/xmcd/discog... Low Unreviewed
CVE-2006-2542 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme Topsites 1.1 allow remote attackers... Low Unreviewed
CVE-2006-2545 was published May 1, 2022
Sybase EAServer 5.0 for HP-UX Itanium, 5.2 for IBM AIX, HP-UX PA-RISC, Linux x86, and Sun Solaris... Low Unreviewed
CVE-2006-2539 was published May 1, 2022
IE Tab 1.0.9 plugin for Mozilla Firefox 1.5.0.3 allows remote user-assisted attackers to cause a... Low Unreviewed
CVE-2006-2538 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in phpwcms 1.2.5-DEV allows remote attackers to inject... Low Unreviewed
CVE-2006-2518 was published May 1, 2022
Directory traversal vulnerability in include/inc_ext/spaw/spaw_control.class.php in phpwcms 1.2.5... Low Unreviewed
CVE-2006-2519 was published May 1, 2022
Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via a... Low Unreviewed
CVE-2006-2505 was published May 1, 2022
BEA WebLogic Server 8.1 up to SP4 and 7.0 up to SP6 allows remote attackers to obtain the source... Low Unreviewed
CVE-2006-2466 was published May 1, 2022
GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local... Low Unreviewed
CVE-2006-2452 was published May 1, 2022
Directory traversal vulnerability in bb_lib/abbc.css.php in Unclassified NewsBoard (UNB) 1.5.3-d... Low Unreviewed
CVE-2006-2406 was published May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,... Low Unreviewed
CVE-2006-2374 was published May 1, 2022
ircp_io.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the... Low Unreviewed
CVE-2006-2366 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in form_grupo.html in E-Business Designer (eBD) 3.1.4... Low Unreviewed
CVE-2006-2348 was published May 1, 2022
The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP... Low Unreviewed
CVE-2006-2334 was published May 1, 2022
Mozilla Firefox 1.5.0.3 allows remote attackers to cause a denial of service via a web page with... Low Unreviewed
CVE-2006-2332 was published May 1, 2022
Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*... Low Unreviewed
CVE-2006-2312 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows... Low Unreviewed
CVE-2006-2311 was published May 1, 2022
Avahi before 0.6.10 allows local users to cause a denial of service (mDNS/DNS-SD service... Low Unreviewed
CVE-2006-2288 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database