Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,262 advisories

Loading
The kqueue mechanism in FreeBSD 4.3 through 4.6 STABLE allows local users to cause a denial of... Low Unreviewed
CVE-2002-0831 was published Apr 30, 2022
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing... Low Unreviewed
CVE-2002-0806 was published Apr 30, 2022
Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views... Low Unreviewed
CVE-2002-0798 was published Apr 30, 2022
clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which... Low Unreviewed
CVE-2002-0790 was published Apr 30, 2022
An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows... Low Unreviewed
CVE-2002-0788 was published Apr 30, 2022
Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to... Low Unreviewed
CVE-2002-0712 was published Apr 30, 2022
ktrace in BSD-based operating systems allows the owner of a process with special privileges to... Low Unreviewed
CVE-2002-0701 was published Apr 30, 2022
scrollkeeper-get-cl in ScrollKeeper 0.3 to 0.3.11 allows local users to create and overwrite... Low Unreviewed
CVE-2002-0662 was published Apr 30, 2022
The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity... Low Unreviewed
CVE-2002-0570 was published Apr 30, 2022
Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file... Low Unreviewed
CVE-2002-0577 was published Apr 30, 2022
Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows... Low Unreviewed
CVE-2002-0568 was published Apr 30, 2022
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to... Low Unreviewed
CVE-2002-0507 was published Apr 30, 2022
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access... Low Unreviewed
CVE-2002-0497 was published Apr 30, 2022
The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long... Low Unreviewed
CVE-2002-0499 was published Apr 30, 2022
The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems... Low Unreviewed
CVE-2002-0429 was published Apr 30, 2022
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users... Low Unreviewed
CVE-2002-0430 was published Apr 30, 2022
IIS 5 and 5.1 supporting WebDAV methods allows remote attackers to determine the internal IP... Low Unreviewed
CVE-2002-0422 was published Apr 30, 2022
Directory traversal vulnerability in the web server used in RealPlayer 6.0.7, and possibly other... Low Unreviewed
CVE-2002-0415 was published Apr 30, 2022
Pipermail in Mailman stores private mail messages with predictable filenames in a world... Low Unreviewed
CVE-2002-0389 was published Apr 30, 2022
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp... Low Unreviewed
CVE-2002-0377 was published Apr 30, 2022
xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a... Low Unreviewed
CVE-2002-0334 was published Apr 30, 2022
The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2002-0296 was published Apr 30, 2022
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many... Low Unreviewed
CVE-2002-0294 was published Apr 30, 2022
Cross-site scripting vulnerability in Slash before 2.2.5, as used in Slashcode and elsewhere,... Low Unreviewed
CVE-2002-0292 was published Apr 30, 2022
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the... Low Unreviewed
CVE-2002-0284 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database