GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
163 advisories
Filter by severity
The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify...
Low
Unreviewed
CVE-2014-0027
was published
May 17, 2022
fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows...
Low
Unreviewed
CVE-2011-0541
was published
May 17, 2022
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite...
Low
Unreviewed
CVE-2012-0786
was published
May 17, 2022
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local...
Low
Unreviewed
CVE-2013-2142
was published
May 17, 2022
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows...
Low
Unreviewed
CVE-2013-1444
was published
May 17, 2022
The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing ...
Low
Unreviewed
CVE-2011-2722
was published
May 17, 2022
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the ...
Low
Unreviewed
CVE-2013-4157
was published
May 17, 2022
bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to...
Low
Unreviewed
CVE-2013-3368
was published
May 17, 2022
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to...
Low
Unreviewed
CVE-2010-2431
was published
May 17, 2022
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files...
Low
Unreviewed
CVE-2012-5564
was published
May 17, 2022
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows...
Low
Unreviewed
CVE-2012-6348
was published
May 17, 2022
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is...
Low
Unreviewed
CVE-2011-4363
was published
May 17, 2022
Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary...
Low
Unreviewed
CVE-2011-5146
was published
May 17, 2022
as31 2.3.1-4 does not seed the random number generator and generates predictable temporary file...
Low
Unreviewed
CVE-2012-0808
was published
May 17, 2022
The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users...
Low
Unreviewed
CVE-2012-4676
was published
May 17, 2022
The configure script in gnash 0.8.8 allows local users to overwrite arbitrary files via a symlink...
Low
Unreviewed
CVE-2010-4337
was published
May 17, 2022
Virtualenv Allows Symlink Attack on /tmp/
Low
CVE-2011-4617
was published
for
virtualenv
(pip)
May 17, 2022
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink...
Low
Unreviewed
CVE-2011-3204
was published
May 17, 2022
The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp,...
Low
Unreviewed
CVE-2010-4173
was published
May 17, 2022
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files...
Low
Unreviewed
CVE-2010-2794
was published
May 17, 2022
GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a...
Low
Unreviewed
CVE-2010-2056
was published
May 17, 2022
The make_lockdir_name function in policy.c in pmount 0.9.18 allow local users to overwrite...
Low
Unreviewed
CVE-2010-2192
was published
May 17, 2022
HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary...
Low
Unreviewed
CVE-2013-0200
was published
May 17, 2022
Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability....
Low
Unreviewed
CVE-2020-5324
was published
May 24, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb...
Low
Unreviewed
CVE-2019-18901
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API