Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,124
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,446 advisories

Loading
PeerFTP_5 stores sensitive information such as passwords in plaintext in the PeerFTP.ini files,... Low Unreviewed
CVE-2005-0517 was published May 1, 2022
Smc.exe in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges... Low Unreviewed
CVE-2005-0515 was published May 1, 2022
The daemon for fallback-reboot before 0.995 allows attackers to cause a denial of service (daemon... Low Unreviewed
CVE-2005-0510 was published May 1, 2022
Adobe Acrobat Reader 6.0.3 and 7.0.0 allows remote attackers to cause a denial of service ... Low Unreviewed
CVE-2005-0492 was published May 1, 2022
DelphiTurk CodeBank (aka KodBank) 3.1 and earlier stores usernames and passwords in the Codebank... Low Unreviewed
CVE-2005-0422 was published May 1, 2022
DelphiTurk FTP 1.0 stores usernames and passwords in the profile.dat file, which allows local... Low Unreviewed
CVE-2005-0421 was published May 1, 2022
A design flaw in image processing software that modifies JPEG images might not modify the... Low Unreviewed
CVE-2005-0406 was published May 1, 2022
The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly... Low Unreviewed
CVE-2005-0400 was published May 1, 2022
Firefox before 1.0.2 allows remote attackers to execute arbitrary code by tricking a user into... Low Unreviewed
CVE-2005-0402 was published May 1, 2022
Desktop Communication Protocol (DCOP) daemon, aka dcopserver, in KDE before 3.4 allows local... Low Unreviewed
CVE-2005-0396 was published May 1, 2022
remstats 1.0.13 and earlier, when processing uptime data, allows local users to create or... Low Unreviewed
CVE-2005-0387 was published May 1, 2022
The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames,... Low Unreviewed
CVE-2005-0365 was published May 1, 2022
SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of... Low Unreviewed
CVE-2005-0346 was published May 1, 2022
Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete... Low Unreviewed
CVE-2005-0348 was published May 1, 2022
The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain... Low Unreviewed
CVE-2005-0342 was published May 1, 2022
Buffer overflow in Painkiller 1.35 and earlier, and possibly other versions before 1.61, allows... Low Unreviewed
CVE-2005-0330 was published May 1, 2022
Directory traversal vulnerability in WinRAR 3.42 and earlier, when the user clicks on the ZIP... Low Unreviewed
CVE-2005-0331 was published May 1, 2022
Directory traversal vulnerability in ZipGenius 5.5 and earlier allows remote attackers to create... Low Unreviewed
CVE-2005-0329 was published May 1, 2022
useredit_account.wdm in Alt-N WebAdmin 3.0.4 does not properly validate account edits by the... Low Unreviewed
CVE-2005-0318 was published May 1, 2022
MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allows remote authenticated users to gain... Low Unreviewed
CVE-2005-0321 was published May 1, 2022
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a... Low Unreviewed
CVE-2005-0312 was published May 1, 2022
The change password functionality in Bottomline Webseries Payment Application does not require... Low Unreviewed
CVE-2005-0288 was published May 1, 2022
lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing... Low Unreviewed
CVE-2005-0261 was published May 1, 2022
Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about... Low Unreviewed
CVE-2005-0232 was published May 1, 2022
Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or... Low Unreviewed
CVE-2005-0231 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database