GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,134
Composer 4,333
Erlang 31
GitHub Actions 21
Go 2,094
Maven 5,262
npm 3,757
NuGet 678
pip 3,444
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,285

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,591 advisories

Filter by severity

Sort by

Least recently updated

Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under... Moderate Unreviewed

CVE-2003-1553 was published Apr 29, 2022

XOOPS 2.0, and possibly earlier versions, allows remote attackers to obtain sensitive information... Moderate Unreviewed

CVE-2003-1550 was published Apr 29, 2022

PHP-Nuke 7.0 allows remote attackers to obtain the installation path via certain characters such... Moderate Unreviewed

CVE-2003-1526 was published Apr 29, 2022

Justice Guestbook 1.3 allows remote attackers to obtain the full installation path via a direct... Moderate Unreviewed

CVE-2003-1535 was published Apr 29, 2022

cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an... Moderate Unreviewed

CVE-2003-1517 was published Apr 29, 2022

Phorum 3.4 through 3.4.2 allows remote attackers to obtain the full path of the web server via an... Moderate Unreviewed

CVE-2003-1486 was published Apr 29, 2022

The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option... Moderate Unreviewed

CVE-2003-1469 was published Apr 29, 2022

The Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full... Moderate Unreviewed

CVE-2003-1468 was published Apr 29, 2022

CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request... Moderate Unreviewed

CVE-2003-1481 was published Apr 29, 2022

Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2003-1418 was published Apr 29, 2022

TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with... Moderate Unreviewed

CVE-2003-1409 was published Apr 29, 2022

Lotus Domino Server 5.0 and 6.0 allows remote attackers to read the source code for files via an... Moderate Unreviewed

CVE-2003-1408 was published Apr 29, 2022

clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information... Moderate Unreviewed

CVE-2003-1379 was published Apr 29, 2022

Microsoft Exchange 2003 and Outlook Web Access (OWA), when configured to use NTLM authentication,... Moderate Unreviewed

CVE-2003-0904 was published Apr 29, 2022

VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a... Moderate Unreviewed

CVE-2003-0456 was published Apr 29, 2022

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes,... Moderate Unreviewed

CVE-2003-0001 was published Apr 29, 2022

IBM QRadar SIEM 7.3, 7.4, and 7.5 could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2021-29776 was published Apr 28, 2022

A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive... Moderate Unreviewed

CVE-2022-22277 was published Apr 28, 2022

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an... Moderate Unreviewed

CVE-2022-22276 was published Apr 28, 2022

The myCred WordPress plugin before 2.4.3.1 does not have any authorisation in place in its mycred... Moderate Unreviewed

CVE-2022-0287 was published Apr 26, 2022

BlackBerry PlayBook before 2.1 has an Information Disclosure Vulnerability via a Web browser... Moderate Unreviewed

CVE-2012-5828 was published Apr 23, 2022

The Simplenews module 6.x-1.x before 6.x-1.4, 6.x-2.x before 6.x-2.0-alpha4, and 7.x-1.x before 7... Moderate Unreviewed

CVE-2012-2724 was published Apr 23, 2022

Within the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum... Moderate Unreviewed

CVE-2012-5476 was published Apr 23, 2022

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in... Moderate Unreviewed

CVE-2012-1105 was published Apr 23, 2022

W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due... Moderate Unreviewed

CVE-2012-6077 was published Apr 23, 2022

Previous 1 2 … 218 219 220 221 222 223 224 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,591 advisories