Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

10,639 advisories

Loading
Kaspersky Antivirus (KAV) 4.0.9.0 does not detect viruses in files with MS-DOS device names in... Moderate Unreviewed
CVE-2003-1443 was published Apr 29, 2022
Kaspersky Antivirus (KAV) 4.0.9.0 allows local users to cause a denial of service (CPU... Moderate Unreviewed
CVE-2003-1444 was published Apr 29, 2022
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the... High Unreviewed
CVE-2003-1425 was published Apr 29, 2022
Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an... Moderate Unreviewed
CVE-2003-1419 was published Apr 29, 2022
BisonFTP Server 4 release 2 allows remote attackers to cause a denial of service (CPU consumption... Moderate Unreviewed
CVE-2003-1416 was published Apr 29, 2022
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1... High Unreviewed
CVE-2003-1405 was published Apr 29, 2022
PHP remote file inclusion vulnerability in hit.php for Kietu 2.0 and 2.3 allows remote attackers... High Unreviewed
CVE-2003-1402 was published Apr 29, 2022
foo.php3 in DotBr 0.1 allows remote attackers to obtain sensitive information via a direct... High Unreviewed
CVE-2003-1403 was published Apr 29, 2022
Aprelium Technologies Abyss Web Server 1.1.2, and possibly other versions before 1.1.4, allows... High Unreviewed
CVE-2003-1364 was published Apr 29, 2022
The escape_dangerous_chars function in CGI::Lite 2.0 and earlier does not correctly remove... Moderate Unreviewed
CVE-2003-1365 was published Apr 29, 2022
List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "|" (pipe),... Moderate Unreviewed
CVE-2003-1350 was published Apr 29, 2022
The Post_Method function in Monkey HTTP Daemon before 0.6.2 allows remote attackers to cause a... Moderate Unreviewed
CVE-2003-1209 was published Apr 29, 2022
Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "... Moderate Unreviewed
CVE-2003-1025 was published Apr 29, 2022
Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of... High Unreviewed
CVE-2003-1003 was published Apr 29, 2022
The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly... High Unreviewed
CVE-2003-0825 was published Apr 29, 2022
The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub... Moderate Unreviewed
CVE-2003-0795 was published Apr 29, 2022
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2003-0567 was published Apr 29, 2022
Nokia Gateway GPRS support node (GGSN) allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2003-0368 was published Apr 29, 2022
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed
CVE-2003-0367 was published Apr 29, 2022
Sed Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An... High Unreviewed
CVE-2022-1509 was published Apr 29, 2022
Improper Input Validation in httpx Critical
CVE-2021-41945 was published for httpx (pip) Apr 29, 2022
lebr0nli Bibo-Joshi
AngellusMortis marcoaaguiar br3ndonland
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot blob_decompress function... Moderate Unreviewed
CVE-2022-28196 was published Apr 28, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c,... High Unreviewed
CVE-2022-28193 was published Apr 28, 2022
ballcat-codegen template engine remote code execution injection High
CVE-2022-24881 was published for com.hccake:ballcat-codegen (Maven) Apr 27, 2022
LuckyT0mat0
The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code... Critical Unreviewed
CVE-2022-29499 was published Apr 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database