Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,268 advisories

Loading
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp... Low Unreviewed
CVE-2002-0377 was published Apr 30, 2022
xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a... Low Unreviewed
CVE-2002-0334 was published Apr 30, 2022
The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2002-0296 was published Apr 30, 2022
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many... Low Unreviewed
CVE-2002-0294 was published Apr 30, 2022
Cross-site scripting vulnerability in Slash before 2.2.5, as used in Slashcode and elsewhere,... Low Unreviewed
CVE-2002-0292 was published Apr 30, 2022
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the... Low Unreviewed
CVE-2002-0284 was published Apr 30, 2022
Runtime library in GNU Ada compiler (GNAT) 3.12p through 3.14p allows local users to modify files... Low Unreviewed
CVE-2002-0271 was published Apr 30, 2022
NetScreen ScreenOS before 2.6.1 does not support a maximum number of concurrent sessions for a... Low Unreviewed
CVE-2002-0234 was published Apr 30, 2022
PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local... Low Unreviewed
CVE-2002-0202 was published Apr 30, 2022
Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128... Low Unreviewed
CVE-2002-0214 was published Apr 30, 2022
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via... Low Unreviewed
CVE-2002-0141 was published Apr 30, 2022
CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command. Low Unreviewed
CVE-2002-0138 was published Apr 30, 2022
efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via... Low Unreviewed
CVE-2002-0129 was published Apr 30, 2022
PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID,... Low Unreviewed
CVE-2002-0121 was published Apr 30, 2022
Apple Palm Desktop 4.0b76 and 4.0b77 creates world-readable backup files and folders when a... Low Unreviewed
CVE-2002-0120 was published Apr 30, 2022
Nevrona Designs MiraMail 1.04 and earlier stores authentication information such as POP usernames... Low Unreviewed
CVE-2002-0110 was published Apr 30, 2022
bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a... Low Unreviewed
CVE-2002-0087 was published Apr 30, 2022
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges,... Low Unreviewed
CVE-2002-0080 was published Apr 30, 2022
GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript... Low Unreviewed
CVE-2002-0044 was published Apr 30, 2022
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical... Low Unreviewed
CVE-2001-1578 was published Apr 30, 2022
The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user... Low Unreviewed
CVE-2001-1593 was published Apr 30, 2022
setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce... Low Unreviewed
CVE-2001-1564 was published Apr 30, 2022
Windows XP with fast user switching and account lockout enabled allows local users to deny user... Low Unreviewed
CVE-2001-1570 was published Apr 30, 2022
Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the... Low Unreviewed
CVE-2001-1565 was published Apr 30, 2022
ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering... Low Unreviewed
CVE-2001-1548 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database