GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
108,947 advisories
Filter by severity
Cross-site scripting (CSS) vulnerability in gnut Gnutella client before 0.4.27 allows remote...
Moderate
Unreviewed
CVE-2001-1004
was published
Apr 30, 2022
IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection...
Moderate
Unreviewed
CVE-2001-0998
was published
Apr 30, 2022
Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5...
Moderate
Unreviewed
CVE-2001-1010
was published
Apr 30, 2022
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA uses a small keyspace for device keys...
Moderate
Unreviewed
CVE-2001-1007
was published
Apr 30, 2022
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes...
Moderate
Unreviewed
CVE-2001-1013
was published
Apr 30, 2022
Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the...
Moderate
Unreviewed
CVE-2001-1018
was published
Apr 30, 2022
Directory traversal vulnerability in Meteor FTP 1.0 allows remote attackers to read arbitrary...
Moderate
Unreviewed
CVE-2001-1031
was published
Apr 30, 2022
Directory traversal vulnerability in view_item CGI program in sglMerchant 1.0 allows remote...
Moderate
Unreviewed
CVE-2001-1019
was published
Apr 30, 2022
Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by...
Moderate
Unreviewed
CVE-2001-1023
was published
Apr 30, 2022
Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a...
Moderate
Unreviewed
CVE-2001-1033
was published
Apr 30, 2022
Cisco SN 5420 Storage Router 1.1(3) and earlier allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2001-1038
was published
Apr 30, 2022
HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is...
Moderate
Unreviewed
CVE-2001-1040
was published
Apr 30, 2022
Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by...
Moderate
Unreviewed
CVE-2001-1042
was published
Apr 30, 2022
ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by...
Moderate
Unreviewed
CVE-2001-1043
was published
Apr 30, 2022
Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows...
Moderate
Unreviewed
CVE-2001-1045
was published
Apr 30, 2022
Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell...
Moderate
Unreviewed
CVE-2001-1037
was published
Apr 30, 2022
The Microsoft Windows network stack allows remote attackers to cause a denial of service (CPU...
Moderate
Unreviewed
CVE-2001-1055
was published
Apr 30, 2022
Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap...
Moderate
Unreviewed
CVE-2001-1065
was published
Apr 30, 2022
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2001-1057
was published
Apr 30, 2022
Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2001-1064
was published
Apr 30, 2022
poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass...
Moderate
Unreviewed
CVE-2001-1075
was published
Apr 30, 2022
Apache with mod_rewrite enabled on most UNIX systems allows remote attackers to bypass...
Moderate
Unreviewed
CVE-2001-1072
was published
Apr 30, 2022
Webridge PX Application Suite allows remote attackers to obtain sensitive information via a...
Moderate
Unreviewed
CVE-2001-1073
was published
Apr 30, 2022
qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages...
Moderate
Unreviewed
CVE-2001-1068
was published
Apr 30, 2022
Buffer overflow in tt_printf function of rxvt 2.6.2 allows local users to gain privileges via a...
Moderate
Unreviewed
CVE-2001-1077
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API