GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,070
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,628
NuGet
638
pip
3,240
Pub
10
RubyGems
858
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
46 advisories
Filter by severity
Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are...
Moderate
Unreviewed
CVE-2001-0150
was published
Apr 30, 2022
Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify...
Moderate
Unreviewed
CVE-2005-4699
was published
May 1, 2022
Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote...
Moderate
Unreviewed
CVE-2006-2058
was published
May 1, 2022
Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers...
Moderate
Unreviewed
CVE-2006-2057
was published
May 1, 2022
Argument injection vulnerability in Internet Explorer 6 for Windows XP SP2 allows user-assisted...
Moderate
Unreviewed
CVE-2006-2056
was published
May 1, 2022
Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote...
Moderate
Unreviewed
CVE-2006-2055
was published
May 1, 2022
Help and Support Center in Microsoft Windows XP SP1 does not properly validate HCP URLs, which...
Moderate
Unreviewed
CVE-2003-0907
was published
Apr 29, 2022
Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to...
Moderate
Unreviewed
CVE-2006-6597
was published
May 1, 2022
Argument injection vulnerability in the Windows Object Packager (packager.exe) in Microsoft...
Moderate
Unreviewed
CVE-2006-4692
was published
May 1, 2022
An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via...
Moderate
Unreviewed
CVE-2023-26782
was published
Apr 28, 2023
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 (22.24...
Moderate
Unreviewed
CVE-2023-39287
was published
Aug 26, 2023
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6...
Moderate
Unreviewed
CVE-2023-39288
was published
Aug 26, 2023
aEnrich Technology a+HRD's functionality for downloading files using youtube-dl.exe does not...
Moderate
Unreviewed
CVE-2024-3775
was published
Apr 15, 2024
gix-transport indirect code execution via malicious username
Moderate
CVE-2024-32884
was published
for
gitoxide
(Rust)
Apr 15, 2024
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit,...
Moderate
Unreviewed
CVE-2024-31966
was published
May 2, 2024
gix-transport code execution vulnerability
Moderate
GHSA-rrjw-j4m2-mf34
was published
for
gix-transport
(Rust)
Sep 25, 2023
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the...
Moderate
Unreviewed
CVE-2024-41711
was published
Aug 13, 2024
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the...
Moderate
Unreviewed
CVE-2024-41710
was published
Aug 12, 2024
Argument injection in websphere_mq agent plugin in Checkmk 2.0.0, 2.1.0, <2.2.0p25 and <2.3.0b5...
Moderate
Unreviewed
CVE-2024-3367
was published
Apr 16, 2024
The Relevanssi Live Ajax Search plugin for WordPress is vulnerable to argument injection in all...
Moderate
Unreviewed
CVE-2024-7573
was published
Aug 28, 2024
Codecov does not sanitize gcov arguments
Moderate
CVE-2019-10800
was published
for
codecov
(pip)
Jul 14, 2022
ProTip!
Advisories are also available from the
GraphQL API