GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,478 advisories
Filter by severity
Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a...
High
Unreviewed
CVE-2001-0329
was published
Apr 30, 2022
FormMail.pl in FormMail 1.6 and earlier allows a remote attacker to send anonymous email (spam)...
High
Unreviewed
CVE-2001-0357
was published
Apr 30, 2022
Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server...
High
Unreviewed
CVE-2001-0341
was published
Apr 30, 2022
Buffer overflows in Sierra Half-Life build 1573 and earlier allow remote attackers to execute...
High
Unreviewed
CVE-2001-0358
was published
Apr 30, 2022
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not...
High
Unreviewed
CVE-2001-0349
was published
Apr 30, 2022
Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and...
High
Unreviewed
CVE-2001-0353
was published
Apr 30, 2022
Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft...
High
Unreviewed
CVE-2001-0365
was published
Apr 30, 2022
Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain...
High
Unreviewed
CVE-2001-0369
was published
Apr 30, 2022
Format string vulnerability in Sierra Half-Life build 1573 and earlier allows a remote attacker...
High
Unreviewed
CVE-2001-0359
was published
Apr 30, 2022
Akopia Interchange 4.5.3 through 4.6.3 installs demo stores with a default group account :backup...
High
Unreviewed
CVE-2001-0372
was published
Apr 30, 2022
The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, ...
High
Unreviewed
CVE-2001-0374
was published
Apr 30, 2022
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do...
High
Unreviewed
CVE-2001-0376
was published
Apr 30, 2022
Format string vulnerability in hfaxd in HylaFAX before 4.1.b2_2 allows local users to gain...
High
Unreviewed
CVE-2001-0387
was published
Apr 30, 2022
Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which...
High
Unreviewed
CVE-2001-0382
was published
Apr 30, 2022
Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which...
High
Unreviewed
CVE-2001-0395
was published
Apr 30, 2022
Buffer overflow in Silent Runner Collector (SRC) 1.6.1 allows remote attackers to cause a denial...
High
Unreviewed
CVE-2001-0397
was published
Apr 30, 2022
/opt/JSparm/bin/perfmon program in Solaris allows local users to create arbitrary files as root...
High
Unreviewed
CVE-2001-0403
was published
Apr 30, 2022
The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment...
High
Unreviewed
CVE-2001-0398
was published
Apr 30, 2022
ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access...
High
Unreviewed
CVE-2001-0405
was published
Apr 30, 2022
Buffer overflow in Trend Micro Virus Buster 2001 8.02 allows remote attackers to cause a denial...
High
Unreviewed
CVE-2001-0410
was published
Apr 30, 2022
IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which...
High
Unreviewed
CVE-2001-0402
was published
Apr 30, 2022
Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands...
High
Unreviewed
CVE-2001-0401
was published
Apr 30, 2022
nph-maillist.pl allows remote attackers to execute arbitrary commands via shell metacharacters ("...
High
Unreviewed
CVE-2001-0400
was published
Apr 30, 2022
Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local...
High
Unreviewed
CVE-2001-0412
was published
Apr 30, 2022
BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows...
High
Unreviewed
CVE-2001-0424
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API