GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
10,757 advisories
Filter by severity
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file...
High
Unreviewed
CVE-2000-0400
was published
Apr 30, 2022
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote...
High
Unreviewed
CVE-2000-0380
was published
Apr 30, 2022
IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a...
High
Unreviewed
CVE-2000-0258
was published
Apr 30, 2022
Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a...
High
Unreviewed
CVE-1999-1547
was published
Apr 30, 2022
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed...
Moderate
Unreviewed
CVE-1999-0999
was published
Apr 30, 2022
Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service...
High
Unreviewed
CVE-1999-0995
was published
Apr 30, 2022
Denial of service in various Windows systems via malformed, fragmented IGMP packets.
High
Unreviewed
CVE-1999-0918
was published
Apr 30, 2022
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.
Moderate
Unreviewed
CVE-1999-0867
was published
Apr 30, 2022
An attacker can conduct a denial of service in Windows NT by executing a program with a malformed...
High
Unreviewed
CVE-1999-0726
was published
Apr 30, 2022
Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request.
High
Unreviewed
CVE-1999-0721
was published
Apr 30, 2022
ICMP redirect messages may crash or lock up a host.
Moderate
Unreviewed
CVE-1999-0265
was published
Apr 30, 2022
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-1999-0001
was published
Apr 30, 2022
It was found that the "mknod" call derived from mknod(2) can create files pointing to devices on...
High
Unreviewed
CVE-2018-10923
was published
Apr 30, 2022
A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux...
Moderate
Unreviewed
CVE-2019-3460
was published
Apr 30, 2022
The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier...
High
Unreviewed
CVE-2004-2771
was published
Apr 29, 2022
Unspecified vulnerability in Gyach Enhanced (Gyach-E) before 1.0.4 allows remote attackers to...
Moderate
Unreviewed
CVE-2004-2706
was published
Apr 29, 2022
Eudora 6.1.0.6 allows remote attackers to obfuscate URLs displayed in the status bar by inserting...
Moderate
Unreviewed
CVE-2004-2649
was published
Apr 29, 2022
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2004-2592
was published
Apr 29, 2022
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2004-2596
was published
Apr 29, 2022
Serv-U FTP Server 4.1 (possibly 4.0) allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2004-2533
was published
Apr 29, 2022
The image upload feature in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote...
High
Unreviewed
CVE-2004-1928
was published
Apr 29, 2022
A "range check error" in Skype for Windows before 0.98.0.28 allows local and remote attackers to...
Moderate
Unreviewed
CVE-2004-1777
was published
Apr 29, 2022
Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application...
Moderate
Unreviewed
CVE-2004-1675
was published
Apr 29, 2022
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2004-1617
was published
Apr 29, 2022
TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote...
High
Unreviewed
CVE-2004-1386
was published
Apr 29, 2022
ProTip!
Advisories are also available from the
GraphQL API