Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+

376 advisories

Loading
Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26 allows local... Low Unreviewed
CVE-2020-7298 was published May 24, 2022
When typing in a password under certain conditions, a race may have occured where the... Low Unreviewed
CVE-2020-15671 was published May 24, 2022
Some ZTE devices have input verification vulnerabilities. The devices support configuring a... Low Unreviewed
CVE-2020-6879 was published May 24, 2022
Jetty invalid URI parsing may produce invalid HttpURI.authority Low
CVE-2022-2047 was published for org.eclipse.jetty:jetty-http (Maven) Jul 7, 2022
rafax00
Some ZTE products have an input verification vulnerability in the diagnostic function interface.... Low Unreviewed
CVE-2021-21726 was published May 24, 2022
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on... Low Unreviewed
CVE-2003-0367 was published Apr 29, 2022
Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote... Low Unreviewed
CVE-2021-20761 was published May 24, 2022
Adobe Photoshop versions 21.2.9 (and earlier) and 22.4.2 (and earlier) are affected by an... Low Unreviewed
CVE-2021-36006 was published May 24, 2022
A vulnerability was found in the Linux kernel in versions before v5.14-rc1. Missing size... Low Unreviewed
CVE-2021-3655 was published May 24, 2022
An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows... Low Unreviewed
CVE-2021-25457 was published May 24, 2022
Adobe After Effects version 18.2.1 (and earlier) is affected by an Improper input validation... Low Unreviewed
CVE-2021-35995 was published May 24, 2022
Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows... Low Unreviewed
CVE-2003-1463 was published Apr 29, 2022
For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and... Low Unreviewed
CVE-2020-8475 was published May 24, 2022
A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may... Low Unreviewed
CVE-2021-22457 was published May 24, 2022
Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version... Low Unreviewed
CVE-2019-11089 was published May 24, 2022
Adobe Acrobat Reader 6.0.3 and 7.0.0 allows remote attackers to cause a denial of service ... Low Unreviewed
CVE-2005-0492 was published May 1, 2022
** DISPUTED ** JavaMail API, as used by Solstice Internet Mail Server POP3 2.0, does not... Low Unreviewed
CVE-2005-1682 was published May 1, 2022
Remote Desktop in Windows XP SP1 does not verify the "Force shutdown from a remote system"... Low Unreviewed
CVE-2005-0904 was published May 1, 2022
Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by... Low Unreviewed
CVE-2006-1192 was published May 1, 2022
Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to... Low Unreviewed
CVE-2006-7139 was published May 1, 2022
The Sony Ericsson K700i and W810i phones allow remote attackers to cause a denial of service ... Low Unreviewed
CVE-2007-0521 was published May 1, 2022
The Nokia N70 phone allows remote attackers to cause a denial of service (continual modal dialogs... Low Unreviewed
CVE-2007-0523 was published May 1, 2022
The SymTDI device driver (SYMTDI.SYS) in Symantec Norton Personal Firewall 2006 9.1.1.7 and... Low Unreviewed
CVE-2007-1476 was published May 1, 2022
The LG Chocolate KG800 phone allows remote attackers to cause a denial of service (continual... Low Unreviewed
CVE-2007-0524 was published May 1, 2022
The Motorola MOTORAZR V3 phone allows remote attackers to cause a denial of service (continual... Low Unreviewed
CVE-2007-0522 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database