GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,552

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

155 advisories

Filter by severity

Sort by

Least recently updated

android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files... Low Unreviewed

CVE-2012-5564 was published May 17, 2022

The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to... Low Unreviewed

CVE-2010-2431 was published May 17, 2022

bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to... Low Unreviewed

CVE-2013-3368 was published May 17, 2022

Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the ... Low Unreviewed

CVE-2013-4157 was published May 17, 2022

The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing ... Low Unreviewed

CVE-2011-2722 was published May 17, 2022

A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows... Low Unreviewed

CVE-2013-1444 was published May 17, 2022

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local... Low Unreviewed

CVE-2013-2142 was published May 17, 2022

The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite... Low Unreviewed

CVE-2012-0786 was published May 17, 2022

fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows... Low Unreviewed

CVE-2011-0541 was published May 17, 2022

The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify... Low Unreviewed

CVE-2014-0027 was published May 17, 2022

base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to... Low Unreviewed

CVE-2013-6402 was published May 17, 2022

lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read... Low Unreviewed

CVE-2013-6891 was published May 17, 2022

dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary... Low Unreviewed

CVE-2011-3153 was published May 17, 2022

LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink... Low Unreviewed

CVE-2011-4105 was published May 17, 2022

The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on... Low Unreviewed

CVE-2013-4472 was published May 17, 2022

DistUpgrade/DistUpgradeViewKDE.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134... Low Unreviewed

CVE-2011-3154 was published May 17, 2022

include/tests_webservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary... Low Unreviewed

CVE-2014-3982 was published May 17, 2022

include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files... Low Unreviewed

CVE-2014-3986 was published May 17, 2022

The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android... Low Unreviewed

CVE-2013-6124 was published May 17, 2022

The undo save quit routine in the kernel in Blender 2.5, 2.63a, and earlier allows local users to... Low Unreviewed

CVE-2010-5105 was published May 17, 2022

Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a... Low Unreviewed

CVE-2015-0858 was published May 17, 2022

lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed

CVE-2014-3424 was published May 17, 2022

lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed

CVE-2014-3423 was published May 17, 2022

lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary... Low Unreviewed

CVE-2014-3421 was published May 17, 2022

lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite... Low Unreviewed

CVE-2014-3422 was published May 17, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

155 advisories