Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,602 advisories

Loading
ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink... Low Unreviewed
CVE-2000-1162 was published Apr 30, 2022
StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp... Low Unreviewed
CVE-2000-1156 was published Apr 30, 2022
Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which... Low Unreviewed
CVE-2000-1141 was published Apr 30, 2022
Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the... Low Unreviewed
CVE-2000-1142 was published Apr 30, 2022
Recourse ManTrap 1.6 allows attackers to cause a denial of service via a sequence of commands... Low Unreviewed
CVE-2000-1146 was published Apr 30, 2022
Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows... Low Unreviewed
CVE-2000-1143 was published Apr 30, 2022
Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the... Low Unreviewed
CVE-2000-1144 was published Apr 30, 2022
Recourse ManTrap 1.6 does not properly hide processes from attackers, which could allow attackers... Low Unreviewed
CVE-2000-1140 was published Apr 30, 2022
registrar in the HP resource monitor service allows local users to read and modify arbitrary... Low Unreviewed
CVE-2000-1127 was published Apr 30, 2022
The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not... Low Unreviewed
CVE-2000-1083 was published Apr 30, 2022
crontab by Paul Vixie uses predictable file names for a temporary file and does not properly... Low Unreviewed
CVE-2000-1096 was published Apr 30, 2022
nss_ldap earlier than 121, when run with nscd (name service caching daemon), allows remote... Low Unreviewed
CVE-2000-1045 was published Apr 30, 2022
shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers,... Low Unreviewed
CVE-2000-1018 was published Apr 30, 2022
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service... Low Unreviewed
CVE-2000-1003 was published Apr 30, 2022
HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a... Low Unreviewed
CVE-2000-0972 was published Apr 30, 2022
glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a... Low Unreviewed
CVE-2000-0959 was published Apr 30, 2022
Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world... Low Unreviewed
CVE-2000-0936 was published Apr 30, 2022
WQuinn QuotaAdvisor 4.1 allows users to list directories and files by running a report on the... Low Unreviewed
CVE-2000-0928 was published Apr 30, 2022
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to... Low Unreviewed
CVE-2000-0881 was published Apr 30, 2022
Some telnet clients allow remote telnet servers to request environment variables from the client... Low Unreviewed
CVE-2000-0892 was published Apr 30, 2022
LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to... Low Unreviewed
CVE-2000-0880 was published Apr 30, 2022
periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users... Low Unreviewed
CVE-2000-0890 was published Apr 30, 2022
LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed... Low Unreviewed
CVE-2000-0879 was published Apr 30, 2022
Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query... Low Unreviewed
CVE-2000-0866 was published Apr 30, 2022
netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local... Low Unreviewed
CVE-2000-0873 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database