GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,441 advisories
Filter by severity
Zetetic Secure Tool for Recalling Important Passwords (STRIP) 0.5 and earlier for the PalmOS...
High
Unreviewed
CVE-2001-0597
was published
Apr 30, 2022
Headlight Software MyGetright prior to 1.0b allows a remote attacker to upload and/or overwrite...
High
Unreviewed
CVE-2001-0605
was published
Apr 30, 2022
Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a...
High
Unreviewed
CVE-2001-0596
was published
Apr 30, 2022
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to...
High
Unreviewed
CVE-2001-0609
was published
Apr 30, 2022
HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a...
High
Unreviewed
CVE-2001-0608
was published
Apr 30, 2022
The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and...
High
Unreviewed
CVE-2001-0621
was published
Apr 30, 2022
Becky! 2.00.05 and earlier can allow a remote attacker to gain additional privileges via a buffer...
High
Unreviewed
CVE-2001-0611
was published
Apr 30, 2022
The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4...
High
Unreviewed
CVE-2001-0622
was published
Apr 30, 2022
Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the ...
High
Unreviewed
CVE-2001-0617
was published
Apr 30, 2022
Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and...
High
Unreviewed
CVE-2001-0614
was published
Apr 30, 2022
Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID...
High
Unreviewed
CVE-2001-0618
was published
Apr 30, 2022
The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks...
High
Unreviewed
CVE-2001-0619
was published
Apr 30, 2022
ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary...
High
Unreviewed
CVE-2001-0625
was published
Apr 30, 2022
HP Event Correlation Service (ecsd) as included with OpenView Network Node Manager 6.1 allows a...
High
Unreviewed
CVE-2001-0629
was published
Apr 30, 2022
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the...
High
Unreviewed
CVE-2001-0632
was published
Apr 30, 2022
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical...
High
Unreviewed
CVE-2001-0626
was published
Apr 30, 2022
Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local...
High
Unreviewed
CVE-2001-0634
was published
Apr 30, 2022
Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service...
High
Unreviewed
CVE-2001-0636
was published
Apr 30, 2022
Microsoft Word 2000 does not check AutoRecovery (.asd) files for macros, which allows a local...
High
Unreviewed
CVE-2001-0628
was published
Apr 30, 2022
Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 stores passwords in plaintext in the "Rumpus User...
High
Unreviewed
CVE-2001-0644
was published
Apr 30, 2022
Symantec/AXENT NetProwler 3.5.x contains several default passwords, which could allow remote...
High
Unreviewed
CVE-2001-0645
was published
Apr 30, 2022
Cross-site scripting (CSS) vulnerability in Microsoft Internet Security and Acceleration (ISA)...
High
Unreviewed
CVE-2001-0658
was published
Apr 30, 2022
Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a...
High
Unreviewed
CVE-2001-0652
was published
Apr 30, 2022
Internet Explorer 5.5 and 5.01 allows remote attackers to bypass security restrictions via...
High
Unreviewed
CVE-2001-0664
was published
Apr 30, 2022
Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1...
High
Unreviewed
CVE-2001-0671
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API