GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
10,639 advisories
Filter by severity
Kaspersky Antivirus (KAV) 4.0.9.0 does not detect viruses in files with MS-DOS device names in...
Moderate
Unreviewed
CVE-2003-1443
was published
Apr 29, 2022
Kaspersky Antivirus (KAV) 4.0.9.0 allows local users to cause a denial of service (CPU...
Moderate
Unreviewed
CVE-2003-1444
was published
Apr 29, 2022
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the...
High
Unreviewed
CVE-2003-1425
was published
Apr 29, 2022
Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an...
Moderate
Unreviewed
CVE-2003-1419
was published
Apr 29, 2022
BisonFTP Server 4 release 2 allows remote attackers to cause a denial of service (CPU consumption...
Moderate
Unreviewed
CVE-2003-1416
was published
Apr 29, 2022
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1...
High
Unreviewed
CVE-2003-1405
was published
Apr 29, 2022
PHP remote file inclusion vulnerability in hit.php for Kietu 2.0 and 2.3 allows remote attackers...
High
Unreviewed
CVE-2003-1402
was published
Apr 29, 2022
foo.php3 in DotBr 0.1 allows remote attackers to obtain sensitive information via a direct...
High
Unreviewed
CVE-2003-1403
was published
Apr 29, 2022
Aprelium Technologies Abyss Web Server 1.1.2, and possibly other versions before 1.1.4, allows...
High
Unreviewed
CVE-2003-1364
was published
Apr 29, 2022
The escape_dangerous_chars function in CGI::Lite 2.0 and earlier does not correctly remove...
Moderate
Unreviewed
CVE-2003-1365
was published
Apr 29, 2022
List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "|" (pipe),...
Moderate
Unreviewed
CVE-2003-1350
was published
Apr 29, 2022
The Post_Method function in Monkey HTTP Daemon before 0.6.2 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2003-1209
was published
Apr 29, 2022
Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "...
Moderate
Unreviewed
CVE-2003-1025
was published
Apr 29, 2022
Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2003-1003
was published
Apr 29, 2022
The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly...
High
Unreviewed
CVE-2003-0825
was published
Apr 29, 2022
The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub...
Moderate
Unreviewed
CVE-2003-0795
was published
Apr 29, 2022
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service ...
High
Unreviewed
CVE-2003-0567
was published
Apr 29, 2022
Nokia Gateway GPRS support node (GGSN) allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2003-0368
was published
Apr 29, 2022
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on...
Low
Unreviewed
CVE-2003-0367
was published
Apr 29, 2022
Sed Injection Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.12. An...
High
Unreviewed
CVE-2022-1509
was published
Apr 29, 2022
Improper Input Validation in httpx
Critical
CVE-2021-41945
was published
for
httpx
(pip)
Apr 29, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot blob_decompress function...
Moderate
Unreviewed
CVE-2022-28196
was published
Apr 28, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c,...
High
Unreviewed
CVE-2022-28193
was published
Apr 28, 2022
ballcat-codegen template engine remote code execution injection
High
CVE-2022-24881
was published
for
com.hccake:ballcat-codegen
(Maven)
Apr 27, 2022
The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code...
Critical
Unreviewed
CVE-2022-29499
was published
Apr 27, 2022
ProTip!
Advisories are also available from the
GraphQL API