GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,757

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

200 advisories

Filter by severity

Sort by

Least recently updated

Code execution in Embedchain Critical

CVE-2024-23731 was published for embedchain (pip) Jan 21, 2024

Argument injection in a MimeTypeGuesser in Symfony High

CVE-2019-18888 was published for symfony/http-foundation (Composer) Dec 2, 2019

A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved... Moderate Unreviewed

CVE-2023-20260 was published Jan 17, 2024

A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed

CVE-2024-20287 was published Jan 17, 2024

Some implementations of rlogin allow root access if given a -froot parameter. High Unreviewed

CVE-1999-0113 was published Apr 30, 2022

Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0,... High Unreviewed

CVE-2001-0667 was published Apr 30, 2022

Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are... Moderate Unreviewed

CVE-2001-0150 was published Apr 30, 2022

Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to... High Unreviewed

CVE-2004-0480 was published Apr 29, 2022

Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier... High Unreviewed

CVE-2004-0489 was published Apr 29, 2022

Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote... Moderate Unreviewed

CVE-2006-2058 was published May 1, 2022

Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers... Moderate Unreviewed

CVE-2006-2057 was published May 1, 2022

Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify... Moderate Unreviewed

CVE-2005-4699 was published May 1, 2022

The URI handlers in Konqueror for KDE 3.2.2 and earlier do not properly filter "-" characters... High Unreviewed

CVE-2004-0411 was published Apr 29, 2022

Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter... High Unreviewed

CVE-2004-0121 was published Apr 29, 2022

Argument injection vulnerability in Internet Explorer 6 for Windows XP SP2 allows user-assisted... Moderate Unreviewed

CVE-2006-2056 was published May 1, 2022

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or... High Unreviewed

CVE-2006-3015 was published May 1, 2022

Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote... Moderate Unreviewed

CVE-2006-2055 was published May 1, 2022

Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary... High Unreviewed

CVE-2006-1865 was published May 1, 2022

Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*... Low Unreviewed

CVE-2006-2312 was published May 1, 2022

Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to... Moderate Unreviewed

CVE-2006-6597 was published May 1, 2022

Argument injection vulnerability in the Windows Object Packager (packager.exe) in Microsoft... Moderate Unreviewed

CVE-2006-4692 was published May 1, 2022

Help and Support Center in Microsoft Windows XP SP1 does not properly validate HCP URLs, which... Moderate Unreviewed

CVE-2003-0907 was published Apr 29, 2022

A remote, unauthenticated attacker may be able to send crafted messages to the web server of the... High Unreviewed

CVE-2024-22182 was published Mar 1, 2024

An argument injection vulnerability in Atlassian Sourcetree for Windows's URI handlers, in all... High Unreviewed

CVE-2019-11582 was published May 24, 2022

In MobaXterm 11.1, the mobaxterm: URI handler has an argument injection vulnerability that allows... High Unreviewed

CVE-2019-13475 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

200 advisories