Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,054 advisories

Loading
Multiple session fixation vulnerabilities in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8... High Unreviewed
CVE-2008-2970 was published May 1, 2022
client/NmdcHub.cpp in Linux DC++ (linuxdcpp) before 0.707 allows remote attackers to cause a... High Unreviewed
CVE-2008-2954 was published May 1, 2022
Sun Java System Access Manager 6.3 through 7.1 and Sun Java System Identity Server 6.1 and 6.2 do... High Unreviewed
CVE-2008-2945 was published May 1, 2022
The kmxfw.sys driver in CA Host-Based Intrusion Prevention System (HIPS) r8, as used in CA... High Unreviewed
CVE-2008-2926 was published May 1, 2022
Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 on Mac OS X allow remote attackers to... High Unreviewed
CVE-2008-2806 was published May 1, 2022
The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel 2.6 before 2.6.26-rc6... High Unreviewed
CVE-2008-2750 was published May 1, 2022
Unrestricted file upload in the mcpuk file editor (atk/attributes/fck/editor/filemanager/browser... High Unreviewed
CVE-2008-2742 was published May 1, 2022
The HTTP server in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0 before 8.0(3)15 and 8... High Unreviewed
CVE-2008-2735 was published May 1, 2022
Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary... High Unreviewed
CVE-2008-2712 was published May 1, 2022
The BIDIB.BIDIBCtrl.1 ActiveX control in BIDIB.ocx 10.9.3.0 in Black Ice Barcode SDK 5.01 allows... High Unreviewed
CVE-2008-2683 was published May 1, 2022
webinc/bxe/scripts/loadsave.php in Flux CMS 1.5.0 and earlier allows remote attackers to execute... High Unreviewed
CVE-2008-2686 was published May 1, 2022
The HTTP service on the Cisco Linksys WRH54G with firmware 1.01.03 allows remote attackers to... High Unreviewed
CVE-2008-2636 was published May 1, 2022
Unrestricted file upload vulnerability in admin/Editor/imgupload.php in FlashBlog 0.31 beta... High Unreviewed
CVE-2008-2574 was published May 1, 2022
Skype 3.6.0.248, and other versions before 3.8.0.139, uses a case-sensitive comparison when... High Unreviewed
CVE-2008-2545 was published May 1, 2022
Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to execute... High Unreviewed
CVE-2008-2405 was published May 1, 2022
The Admin Server in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote... High Unreviewed
CVE-2008-2401 was published May 1, 2022
SubSonic allows remote attackers to bypass pagesize limits and cause a denial of service (CPU... High Unreviewed
CVE-2008-2391 was published May 1, 2022
Unrestricted file upload vulnerability in WordPress 2.5.1 and earlier might allow remote... High Unreviewed
CVE-2008-2392 was published May 1, 2022
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3... High Unreviewed
CVE-2008-2374 was published May 1, 2022
IDAutomation allows remote attackers to overwrite arbitrary files via the argument to the (1)... High Unreviewed
CVE-2008-2283 was published May 1, 2022
Incomplete blacklist vulnerability in javaUpload.php in Postlet in the FileManager module in CMS... High Unreviewed
CVE-2008-2267 was published May 1, 2022
Microsoft Internet Explorer 6 and 7 does not perform proper "argument validation" during print... High Unreviewed
CVE-2008-2259 was published May 1, 2022
Microsoft Internet Explorer 5.01, 6, and 7 does not properly handle objects that have been... High Unreviewed
CVE-2008-2256 was published May 1, 2022
Unspecified vulnerability in Century routers allows remote attackers to cause a denial of service... High Unreviewed
CVE-2008-2170 was published May 1, 2022
Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2008-2169 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database