GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,960
Composer 4,783
Erlang 36
GitHub Actions 29
Go 2,353
Maven 5,667
npm 3,977
NuGet 720
pip 3,774
Pub 12
RubyGems 923
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,562

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,309 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

acFTP 1.4 does not properly handle when an invalid password is provided by the user during... High Unreviewed

CVE-2002-2417 was published Apr 30, 2022

Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed ... High Unreviewed

CVE-2002-2397 was published Apr 30, 2022

Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote... High Unreviewed

CVE-2002-2279 was published Apr 30, 2022

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute... High Unreviewed

CVE-2001-0537 was published Apr 30, 2022

Windows NT does not properly download a system policy if the domain user logs into the domain... High Unreviewed

CVE-1999-0987 was published Apr 30, 2022

In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank... High Unreviewed

CVE-1999-0366 was published Apr 30, 2022

USU Oracle Optimization before 5.17.5 lacks Polkit authentication, which allows smartcollector... High Unreviewed

CVE-2022-29934 was published Apr 30, 2022

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with... High Unreviewed

CVE-2004-2734 was published Apr 29, 2022

LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server... High Unreviewed

CVE-2004-2724 was published Apr 29, 2022

edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain... High Unreviewed

CVE-2004-2715 was published Apr 29, 2022

Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user... High Unreviewed

CVE-2004-2182 was published Apr 29, 2022

The default installation of Cisco voice products, when running the IBM Director Agent on IBM... High Unreviewed

CVE-2004-1760 was published Apr 29, 2022

TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with... High Unreviewed

CVE-2003-1574 was published Apr 29, 2022

The web administration page for the Ericsson HM220dp ADSL modem does not require authentication,... High Unreviewed

CVE-2003-1442 was published Apr 29, 2022

Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door... High Unreviewed

CVE-2003-1343 was published Apr 29, 2022

Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and... High Unreviewed

CVE-2003-0216 was published Apr 29, 2022

IBM QRadar 7.3, 7.4, and 7.5 could allow a malicious actor to impersonate an actor due to key... High Unreviewed

CVE-2021-38878 was published Apr 28, 2022

A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the... High Unreviewed

CVE-2012-3462 was published Apr 23, 2022

An issue was discovered in MISP before 2.4.158. In UsersController.php, password confirmation can... High Unreviewed

CVE-2022-29534 was published Apr 22, 2022

TCP firewalls could be circumvented by sending a SYN Packets with other flags (like e.g. RST flag... High Unreviewed

CVE-2002-2438 was published Apr 21, 2022

A vulnerability within the authentication process of Abacus ERP allows a remote attacker to... High Unreviewed

CVE-2022-1065 was published Apr 20, 2022

Real-time image information exposure is caused by insufficient authentication for activated RTSP... High Unreviewed

CVE-2021-26627 was published Apr 20, 2022

The device authentication service module has a defect vulnerability introduced in the design... High Unreviewed

CVE-2021-46740 was published Apr 12, 2022

An Access Control vulnerability exists in CLARO KAON CG3000 1.00.67 in the router configuration,... High Unreviewed

CVE-2021-43483 was published Apr 9, 2022

A vulnerability was found in SAP Information System 1.0 which has been rated as critical.... High Unreviewed

CVE-2022-1248 was published Apr 7, 2022

Previous 1 2 … 48 49 50 51 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,309 advisories