Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

10,867 advisories

Loading
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a... Moderate Unreviewed
CVE-2006-6383 was published May 1, 2022
Sorin Chitu Telnet-FTP Server 1.0 allows remote authenticated users to cause a denial of service ... Moderate Unreviewed
CVE-2006-6241 was published May 1, 2022
tiki-register.php in TikiWiki before 1.9.7 allows remote attackers to trigger "notification-spam"... High Unreviewed
CVE-2006-6168 was published May 1, 2022
VMWare VirtualCenter client 2.x before 2.0.1 Patch 1 (Build 33643) and 1.4.x before 1.4.1 Patch 1... Moderate Unreviewed
CVE-2006-5990 was published May 1, 2022
fetchmail 6.3.5 and 6.3.6 before 6.3.6-rc4, when refusing a message delivered via the mda option,... High Unreviewed
CVE-2006-5974 was published May 1, 2022
Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an... High Unreviewed
CVE-2006-5938 was published May 1, 2022
login.pl in SQL-Ledger before 2.6.21 and LedgerSMB before 1.1.5 allows remote attackers to... High Unreviewed
CVE-2006-5872 was published May 1, 2022
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12... Low Unreviewed
CVE-2006-5793 was published May 1, 2022
The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection... High Unreviewed
CVE-2006-5559 was published May 1, 2022
Hastymail 1.5 and earlier before 20061008 allows remote authenticated users to send arbitrary... Moderate Unreviewed
CVE-2006-5313 was published May 1, 2022
Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows... Moderate Unreviewed
CVE-2006-5265 was published May 1, 2022
Format string vulnerability in the NSRunAlertPanel function in eBay Skype for Mac 1.5.*.79 and... High Unreviewed
CVE-2006-5084 was published May 1, 2022
Moodle does not properly validate module instance id Moderate
CVE-2006-4936 was published for moodle/moodle (Composer) May 1, 2022
The Database module in Moodle before 1.6.2 does not properly handle uploaded files, which has... High Unreviewed
CVE-2006-4935 was published May 1, 2022
The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user... Low Unreviewed
CVE-2006-4842 was published May 1, 2022
RapDrv.sys in BlackICE PC Protection 3.6.cpn, cpj, cpiE, and possibly 3.6 and earlier, allows... Moderate Unreviewed
CVE-2006-4541 was published May 1, 2022
Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to unvalidated input,... Moderate Unreviewed
CVE-2006-4468 was published May 1, 2022
Joomla! before 1.0.11 does not properly unset variables when the input data includes a numeric... Moderate Unreviewed
CVE-2006-4466 was published May 1, 2022
Mozilla Firefox 1.5.0.6 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2006-4310 was published May 1, 2022
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (crash)... Moderate Unreviewed
CVE-2006-4301 was published May 1, 2022
MySQL before 5.0.25 and 5.1 before 5.1.12 evaluates arguments of suid routines in the security... Moderate Unreviewed
CVE-2006-4227 was published May 1, 2022
The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote... High Unreviewed
CVE-2006-3942 was published May 1, 2022
OSSP shiela 1.1.5 and earlier allows remote authenticated users to execute arbitrary commands on... Moderate Unreviewed
CVE-2006-3633 was published May 1, 2022
Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using the... High Unreviewed
CVE-2006-3450 was published May 1, 2022
Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports... High Unreviewed
CVE-2006-3451 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database