Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,051 advisories

Loading
Multiple stack-based buffer overflows in the Oracle JInitiator ActiveX control (beans.ocx) 1.1.8... High Unreviewed
CVE-2007-4467 was published May 1, 2022
Cisco IP Phone 7940 and 7960 with P0S3-08-6-00 firmware, and other SIP firmware before 8.7(0),... High Unreviewed
CVE-2007-4459 was published May 1, 2022
Heap-based buffer overflow in Kakadu kdu_v32m.dll in Yahoo! Messenger 8.1.0.413 allows remote... High Unreviewed
CVE-2007-4391 was published May 1, 2022
Multiple input validation errors in ACD ACDSee Photo Manager 9.0 build 108, Pro Photo Manager 8.1... High Unreviewed
CVE-2007-4344 was published May 1, 2022
Multiple buffer overflows in the ServerProtect service (SpntSvc.exe) in Trend Micro ServerProtect... High Unreviewed
CVE-2007-4218 was published May 1, 2022
vsdatant.sys 6.5.737.0 in Check Point Zone Labs ZoneAlarm before 7.0.362 allows local users to... High Unreviewed
CVE-2007-4216 was published May 1, 2022
The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64)... High Unreviewed
CVE-2007-4130 was published May 1, 2022
SQL injection vulnerability in Gforge before 3.1 allows remote attackers to execute arbitrary SQL... High Unreviewed
CVE-2007-3913 was published May 1, 2022
checkrestart in debian-goodies before 0.34 allows local users to gain privileges via shell... High Unreviewed
CVE-2007-3912 was published May 1, 2022
The URL handling in Shell32.dll in the Windows shell in Microsoft Windows XP and Server 2003,... High Unreviewed
CVE-2007-3896 was published May 1, 2022
Apple iPhone 1.1.1, with Bluetooth enabled, allows physically proximate attackers to cause a... High Unreviewed
CVE-2007-3753 was published May 1, 2022
The Java XML Digital Signature implementation in Sun JDK and JRE 6 before Update 2 does not... High Unreviewed
CVE-2007-3716 was published May 1, 2022
Unspecified vulnerability in TOS 2.1.x, 2.2.x before 2.2.5, and 2.5.x before 2.5.2 on... High Unreviewed
CVE-2007-3711 was published May 1, 2022
Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly... High Unreviewed
CVE-2007-3715 was published May 1, 2022
TippingPoint IPS before 20070710 does not properly handle a hex-encoded alternate Unicode '/' ... High Unreviewed
CVE-2007-3701 was published May 1, 2022
The NCTAudioEditor2 ActiveX control in NCTWMAFile2.dll 2.6.2.157, as distributed in... High Unreviewed
CVE-2007-3400 was published May 1, 2022
Wireshark 0.99.5 allows remote attackers to cause a denial of service (memory consumption) via a... High Unreviewed
CVE-2007-3391 was published May 1, 2022
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1... High Unreviewed
CVE-2007-3010 was published May 1, 2022
Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow... High Unreviewed
CVE-2007-2967 was published May 1, 2022
Heap-based buffer overflow in Microsoft MSN Messenger 6.2, 7.0, and 7.5, and Live Messenger 8.0... High Unreviewed
CVE-2007-2931 was published May 1, 2022
Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote... High Unreviewed
CVE-2007-2884 was published May 1, 2022
The embedded Linux kernel in certain Sun-Brocade SilkWorm switches before 20070516 does not... High Unreviewed
CVE-2007-2764 was published May 1, 2022
NMMediaServer.exe in Nero MediaHome 2.5.5.0 and CE 1.3.0.4 allows remote attackers to cause a... High Unreviewed
CVE-2007-2322 was published May 1, 2022
The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5... High Unreviewed
CVE-2007-1922 was published May 1, 2022
The SIP channel module in Yet Another Telephony Engine (Yate) before 1.2.0 sets the... High Unreviewed
CVE-2007-1693 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database