Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,313
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,433
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

451 advisories

Loading
flamethrower in flamethrower 0.1.8 allows local users to overwrite arbitrary files via a symlink... Moderate Unreviewed
CVE-2008-5141 was published May 17, 2022
linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4966 was published May 17, 2022
create_lazarus_export_tgz.sh in lazarus 0.9.24 allows local users to overwrite or delete... Moderate Unreviewed
CVE-2008-5007 was published May 17, 2022
radiance 3R9+20080530 allows local users to overwrite arbitrary files via a symlink attack on (a)... Moderate Unreviewed
CVE-2008-4978 was published May 17, 2022
scratchbox2 1.99.0.24 allows local users to overwrite arbitrary files via a symlink attack on (a)... Moderate Unreviewed
CVE-2008-4984 was published May 17, 2022
ltp-network-test 20060918 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4969 was published May 17, 2022
find_flags in Kitware GCC-XML (gccxml) 0.9.0 allows local users to overwrite arbitrary files via... Moderate Unreviewed
CVE-2008-4957 was published May 17, 2022
arb-common 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4941 was published May 17, 2022
aegis 4.24 and aegis-web 4.24 allow local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4938 was published May 17, 2022
rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows local users to delete... Moderate Unreviewed
CVE-2008-4832 was published May 17, 2022
Absolute Path Traversal vulnerability in FileStreaming in QSAN Storage Manager allows remote... Moderate Unreviewed
CVE-2021-32508 was published May 24, 2022
pdfjam creates the (1) pdf90, (2) pdfjoin, and (3) pdfnup files with a predictable name, which... Moderate Unreviewed
CVE-2008-5743 was published May 17, 2022
chm2pdf 0.9 allows user-assisted local users to delete arbitrary files via a symlink attack on ... Moderate Unreviewed
CVE-2008-5299 was published May 17, 2022
rkhunter in rkhunter 1.3.2 allows local users to overwrite arbitrary files via a symlink attack... Moderate Unreviewed
CVE-2008-4982 was published May 17, 2022
gdrae in gdrae 0.1 allows local users to overwrite arbitrary files via a symlink attack on the ... Moderate Unreviewed
CVE-2008-4958 was published May 17, 2022
xastir 1.9.2 allows local users to overwrite arbitrary files via a symlink attack on the (a) /tmp... Moderate Unreviewed
CVE-2008-4987 was published May 17, 2022
runiozone in lustre 1.6.5 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4970 was published May 17, 2022
scilab-bin 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp... Moderate Unreviewed
CVE-2008-4983 was published May 17, 2022
mailgo in mgt 2.31 allows local users to overwrite arbitrary files via a symlink attack on a /tmp... Moderate Unreviewed
CVE-2008-4972 was published May 17, 2022
wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/env###... Moderate Unreviewed
CVE-2008-4986 was published May 17, 2022
asciiview in aview 1.3.0 allows local users to overwrite arbitrary files via a symlink attack on... Moderate Unreviewed
CVE-2008-4935 was published May 17, 2022
The (1) rccs and (2) STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary... Moderate Unreviewed
CVE-2008-4968 was published May 17, 2022
Symlink following allows leaking out-of-bounds YAML files from Argo CD repo-server Moderate
CVE-2022-31036 was published for github.com/argoproj/argo-cd (Go) Jun 21, 2022
AdamKorcz DavidKorczynski
The IPTables-Parse module before 1.6 for Perl allows local users to write to arbitrary files... Moderate Unreviewed
CVE-2015-8326 was published May 17, 2022
Open-source ARJ archiver 3.10.22 allows remote attackers to conduct directory traversal attacks... Moderate Unreviewed
CVE-2015-0556 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database