Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,125
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

928 advisories

Loading
PHP remote file inclusion vulnerability in galleria.html.php in Galleria Mambo Module 1.0 and... Moderate Unreviewed
CVE-2006-3396 was published May 1, 2022
Ralf Image Gallery (RIG) 0.7.4 and other versions before 1.0, when register_globals is enabled,... Moderate Unreviewed
CVE-2006-3210 was published May 1, 2022
Multiple PHP remote file inclusion vulnerabilities in Grayscale BandSite CMS 1.1.1, when... Moderate Unreviewed
CVE-2006-3193 was published May 1, 2022
PHP remote file inclusion vulnerability in Webspotblogging 3.0.1 allows remote attackers to... Moderate Unreviewed
CVE-2006-2860 was published May 1, 2022
PHP remote file inclusion vulnerability in dotWidget CMS 1.0.6 and earlier, when register_globals... Moderate Unreviewed
CVE-2006-2852 was published May 1, 2022
PHP remote file inclusion vulnerability in Ottoman 1.1.2, when register_globals is enabled,... Moderate Unreviewed
CVE-2006-2767 was published May 1, 2022
PHP remote file inclusion vulnerability in Basic Analysis and Security Engine (BASE) 1.2.4 and... Moderate Unreviewed
CVE-2006-2685 was published May 1, 2022
PHP remote file inclusion vulnerabilities in ActionApps 2.8.1 allow remote attackers to execute... Moderate Unreviewed
CVE-2006-2686 was published May 1, 2022
PHP remote file inclusion vulnerability in SocketMail Lite and Pro 2.2.6 and earlier, when... Moderate Unreviewed
CVE-2006-2681 was published May 1, 2022
PHP remote file inclusion vulnerability in resources/includes/popp.config.loader.inc.php in... Moderate Unreviewed
CVE-2006-2395 was published May 1, 2022
Multiple PHP remote file inclusion vulnerabilities in claro_init_global.inc.php in Dokeos 1.6.3... Moderate Unreviewed
CVE-2006-2286 was published May 1, 2022
PHP remote file inclusion vulnerability in auction\auction_common.php in Auction mod 1.3m for... Moderate Unreviewed
CVE-2006-2245 was published May 1, 2022
PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote attackers to... Moderate Unreviewed
CVE-2006-2122 was published May 1, 2022
Unspecified vulnerability in phpBB allows remote authenticated users with Administration Panel... Moderate Unreviewed
CVE-2006-1896 was published May 1, 2022
PHP remote file inclusion vulnerability in lib/armygame.php in SQuery 4.5 and earlier, as used in... Moderate Unreviewed
CVE-2006-1610 was published May 1, 2022
PHP remote file inclusion vulnerability in includes/functions_install.php in Virtual War (VWar) 1... Moderate Unreviewed
CVE-2006-1503 was published May 1, 2022
Argument injection vulnerability in greylistclean.cron in sa-exim 4.2 allows remote attackers to... Moderate Unreviewed
CVE-2006-1251 was published May 1, 2022
SAP Web Application Server (WebAS) Kernel before 7.0 allows remote attackers to inject arbitrary... Moderate Unreviewed
CVE-2006-1039 was published May 1, 2022
PHP remote file include vulnerability in admin/index.php in Archangel Weblog 0.90.02 allows... Moderate Unreviewed
CVE-2006-0945 was published May 1, 2022
PHP remote file inclusion vulnerability in prepend.php in Plume CMS 1.0.2, when register_globals... Moderate Unreviewed
CVE-2006-0725 was published May 1, 2022
Multiple PHP remote file include vulnerabilities in RunCMS 1.2 and earlier, with register_globals... Moderate Unreviewed
CVE-2006-0659 was published May 1, 2022
Pantomime in Ecartis 1.0.0 snapshot 20050909 stores e-mail attachments in a publicly accessible... Moderate Unreviewed
CVE-2006-0332 was published May 1, 2022
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user... Moderate Unreviewed
CVE-2006-0236 was published May 1, 2022
Multiple HTTP response splitting vulnerabilities in PHP 5.1.1 allow remote attackers to inject... Moderate Unreviewed
CVE-2006-0207 was published May 1, 2022
The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote... Moderate Unreviewed
CVE-2005-4874 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database