Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,124
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,446 advisories

Loading
Unknown vulnerability in HP OpenVMS VAX 7.x and 6.x and OpenVMS Alpha 7.x or 6.x allows local... Low Unreviewed
CVE-2005-0652 was published May 1, 2022
delpm.php in PBLang 4.63 allows remote authenticated users to delete arbitrary PM files by... Low Unreviewed
CVE-2005-0631 was published May 1, 2022
sendpm.php in PBLang 4.63 allows remote authenticated users to read arbitrary files via a full... Low Unreviewed
CVE-2005-0630 was published May 1, 2022
Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie... Low Unreviewed
CVE-2005-0626 was published May 1, 2022
reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions... Low Unreviewed
CVE-2005-0624 was published May 1, 2022
reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive... Low Unreviewed
CVE-2005-0625 was published May 1, 2022
Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the... Low Unreviewed
CVE-2005-0619 was published May 1, 2022
Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file,... Low Unreviewed
CVE-2005-0620 was published May 1, 2022
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite... Low Unreviewed
CVE-2005-0587 was published May 1, 2022
PHP 4 (PHP4) allows attackers to cause a denial of service (daemon crash) by using the readfile... Low Unreviewed
CVE-2005-0596 was published May 1, 2022
Firefox before 1.0.1 allows remote attackers to spoof the (1) security and (2) download modal... Low Unreviewed
CVE-2005-0591 was published May 1, 2022
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure... Low Unreviewed
CVE-2005-0593 was published May 1, 2022
Firefox before 1.0.1 and Mozilla before 1.7.6 truncates long sub-domains or paths for display,... Low Unreviewed
CVE-2005-0585 was published May 1, 2022
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the... Low Unreviewed
CVE-2005-0586 was published May 1, 2022
Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do... Low Unreviewed
CVE-2005-0584 was published May 1, 2022
Unknown vulnerability in Standard Type Services Framework (STSF) Font Server Daemon ... Low Unreviewed
CVE-2005-0576 was published May 1, 2022
cmd5checkpw, when running setuid, does not properly drop privileges before calling the execvp... Low Unreviewed
CVE-2005-0580 was published May 1, 2022
Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin... Low Unreviewed
CVE-2005-0578 was published May 1, 2022
Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows... Low Unreviewed
CVE-2005-0550 was published May 1, 2022
The reiserfs_copy_from_user_to_file_region function in reiserfs/file.c for Linux kernel 2.6.10... Low Unreviewed
CVE-2005-0532 was published May 1, 2022
Linux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for offset arguments to the... Low Unreviewed
CVE-2005-0529 was published May 1, 2022
The atm_get_addr function in addr.c for Linux kernel 2.6.10 and 2.6.11 before 2.6.11-rc4 may... Low Unreviewed
CVE-2005-0531 was published May 1, 2022
Signedness error in the copy_from_read_buf function in n_tty.c for Linux kernel 2.6.10 and 2.6... Low Unreviewed
CVE-2005-0530 was published May 1, 2022
eXeem 0.21 stores sensitive information such as passwords in plaintext in the Exeem registry key,... Low Unreviewed
CVE-2005-0518 was published May 1, 2022
SendLink 1.5 stores sensitive information, possibly including passwords, in plaintext in the data... Low Unreviewed
CVE-2005-0521 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database