GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,055
Composer 4,070
Erlang 29
GitHub Actions 19
Go 1,891
Maven 5,093
npm 3,628
NuGet 638
pip 3,240
Pub 10
RubyGems 858
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,279

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

142 advisories

Filter by severity

Sort by

Least recently updated

In MobaXterm 11.1, the mobaxterm: URI handler has an argument injection vulnerability that allows... High Unreviewed

CVE-2019-13475 was published May 24, 2022

An argument injection vulnerability in Atlassian Sourcetree for Windows's URI handlers, in all... High Unreviewed

CVE-2019-11582 was published May 24, 2022

A remote, unauthenticated attacker may be able to send crafted messages to the web server of the... High Unreviewed

CVE-2024-22182 was published Mar 1, 2024

Help and Support Center in Microsoft Windows XP SP1 does not properly validate HCP URLs, which... Moderate Unreviewed

CVE-2003-0907 was published Apr 29, 2022

Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary... High Unreviewed

CVE-2006-1865 was published May 1, 2022

Argument injection vulnerability in the URI handler in Skype 2.0.*.104 and 2.5.*.0 through 2.5.*... Low Unreviewed

CVE-2006-2312 was published May 1, 2022

Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to... Moderate Unreviewed

CVE-2006-6597 was published May 1, 2022

Argument injection vulnerability in the Windows Object Packager (packager.exe) in Microsoft... Moderate Unreviewed

CVE-2006-4692 was published May 1, 2022

Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote... Moderate Unreviewed

CVE-2006-2055 was published May 1, 2022

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or... High Unreviewed

CVE-2006-3015 was published May 1, 2022

Argument injection vulnerability in Internet Explorer 6 for Windows XP SP2 allows user-assisted... Moderate Unreviewed

CVE-2006-2056 was published May 1, 2022

Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter... High Unreviewed

CVE-2004-0121 was published Apr 29, 2022

The URI handlers in Konqueror for KDE 3.2.2 and earlier do not properly filter "-" characters... High Unreviewed

CVE-2004-0411 was published Apr 29, 2022

Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify... Moderate Unreviewed

CVE-2005-4699 was published May 1, 2022

Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote... Moderate Unreviewed

CVE-2006-2058 was published May 1, 2022

Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers... Moderate Unreviewed

CVE-2006-2057 was published May 1, 2022

Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier... High Unreviewed

CVE-2004-0489 was published Apr 29, 2022

Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to... High Unreviewed

CVE-2004-0480 was published Apr 29, 2022

Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are... Moderate Unreviewed

CVE-2001-0150 was published Apr 30, 2022

Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0,... High Unreviewed

CVE-2001-0667 was published Apr 30, 2022

Some implementations of rlogin allow root access if given a -froot parameter. High Unreviewed

CVE-1999-0113 was published Apr 30, 2022

A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed

CVE-2024-20287 was published Jan 17, 2024

A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved... Moderate Unreviewed

CVE-2023-20260 was published Jan 17, 2024

A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation... High Unreviewed

CVE-2023-20224 was published Aug 17, 2023

Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments.... High Unreviewed

CVE-2023-47804 was published Dec 29, 2023

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

142 advisories