Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,820 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x before 1... Low Unreviewed
CVE-2009-3300 was published May 2, 2022
vtiger CRM before 5.1.0 allows remote authenticated users to bypass the permissions on the (1)... Low Unreviewed
CVE-2009-3257 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Self Service UI (SSUI) in IBM Tivoli Identity... Low Unreviewed
CVE-2009-3262 was published May 2, 2022
The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x... Low Unreviewed
CVE-2009-3228 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Print (aka Printer, e-mail and PDF... Low Unreviewed
CVE-2009-3210 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the ImageCache module 5.x before 5.x-2.5... Low Unreviewed
CVE-2009-3206 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Date Tools sub-module in the Date module 6.x... Low Unreviewed
CVE-2009-3156 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Calendar module 6.x before 6.x-2.2 for Drupal... Low Unreviewed
CVE-2009-3157 was published May 2, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the... Low Unreviewed
CVE-2009-3094 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the console in Symantec SecurityExpressions Audit and... Low Unreviewed
CVE-2009-3029 was published May 2, 2022
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and earlier stores... Low Unreviewed
CVE-2009-2977 was published May 2, 2022
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2,... Low Unreviewed
CVE-2009-2948 was published May 2, 2022
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a... Low Unreviewed
CVE-2009-2918 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated... Low Unreviewed
CVE-2009-2919 was published May 2, 2022
SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data... Low Unreviewed
CVE-2009-2911 was published May 2, 2022
arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not... Low Unreviewed
CVE-2009-2910 was published May 2, 2022
The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3... Low Unreviewed
CVE-2009-2899 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Alerts list feature in the web interface in... Low Unreviewed
CVE-2009-2898 was published May 2, 2022
Sun Virtual Desktop Infrastructure (VDI) 3.0, when anonymous binding is enabled, does not... Low Unreviewed
CVE-2009-2856 was published May 2, 2022
The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically... Low Unreviewed
CVE-2009-2796 was published May 2, 2022
IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier... Low Unreviewed
CVE-2009-2752 was published May 2, 2022
IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.27, and 7.0 before 7.0.0.7, does not... Low Unreviewed
CVE-2009-2743 was published May 2, 2022
Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when... Low Unreviewed
CVE-2009-2712 was published May 2, 2022
The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local... Low Unreviewed
CVE-2009-2691 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x... Low Unreviewed
CVE-2009-2610 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database