Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,262 advisories

Loading
TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text... Low Unreviewed
CVE-2002-1848 was published Apr 30, 2022
Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an... Low Unreviewed
CVE-2002-1827 was published Apr 30, 2022
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers... Low Unreviewed
CVE-2002-1813 was published Apr 30, 2022
Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0... Low Unreviewed
CVE-2002-1785 was published Apr 30, 2022
The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a... Low Unreviewed
CVE-2002-1782 was published Apr 30, 2022
Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial... Low Unreviewed
CVE-2002-1754 was published Apr 30, 2022
acroread in Adobe Acrobat Reader 4.05 on Linux allows local users to overwrite arbitrary files... Low Unreviewed
CVE-2002-1764 was published Apr 30, 2022
Alt-N Technologies Mdaemon 5.0 through 5.0.6 uses a weak encryption algorithm to store user... Low Unreviewed
CVE-2002-1739 was published Apr 30, 2022
The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing... Low Unreviewed
CVE-2002-1731 was published Apr 30, 2022
Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and... Low Unreviewed
CVE-2002-1740 was published Apr 30, 2022
Astaro Security Linux 2.016 creates world-writable files and directories, which allows local... Low Unreviewed
CVE-2002-1737 was published Apr 30, 2022
BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local... Low Unreviewed
CVE-2002-1711 was published Apr 30, 2022
The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the... Low Unreviewed
CVE-2002-1710 was published Apr 30, 2022
The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home... Low Unreviewed
CVE-2002-1713 was published Apr 30, 2022
Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a... Low Unreviewed
CVE-2002-1696 was published Apr 30, 2022
Buffer overflow in backup utility of Microsoft Windows 95 allows attackers to execute arbitrary... Low Unreviewed
CVE-2002-1692 was published Apr 30, 2022
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and... Low Unreviewed
CVE-2002-1687 was published Apr 30, 2022
NewsReactor 1.0 uses a weak encryption scheme, which could allow local users to decrypt the... Low Unreviewed
CVE-2002-1682 was published Apr 30, 2022
BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive... Low Unreviewed
CVE-2002-1676 was published Apr 30, 2022
The web interface for Webmin 0.92 does not properly quote or filter script code in files that are... Low Unreviewed
CVE-2002-1673 was published Apr 30, 2022
Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world... Low Unreviewed
CVE-2002-1672 was published Apr 30, 2022
HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to... Low Unreviewed
CVE-2002-1668 was published Apr 30, 2022
Unknown vulnerability in ping in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users... Low Unreviewed
CVE-2002-1610 was published Apr 30, 2022
Solaris 2.5.1 through 9 allows local users to cause a denial of service (kernel panic) by setting... Low Unreviewed
CVE-2002-1586 was published Apr 30, 2022
Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is... Low Unreviewed
CVE-2002-1589 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database