GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,846 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA Authentication Agent 5.3.0.258 for... Moderate Unreviewed

CVE-2008-2027 was published May 1, 2022

The AssignUser function in template.class.php in PHPizabi 0.848b C1 HFP3 performs unsafe macro... Moderate Unreviewed

CVE-2008-2018 was published May 1, 2022

The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the... Moderate Unreviewed

CVE-2008-2004 was published May 1, 2022

Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows... Low Unreviewed

CVE-2008-1924 was published May 1, 2022

phpdemo/viewsource.php in Advanced Software Engineering ChartDirector 4.1 allows remote attackers... Moderate Unreviewed

CVE-2008-1782 was published May 1, 2022

ezRADIUS 0.1 stores sensitive information under the web root with insufficient access control,... High Unreviewed

CVE-2008-1752 was published May 1, 2022

WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote attackers to... Moderate Unreviewed

CVE-2008-1717 was published May 1, 2022

PHP-Nuke Platinum 7.6.b.5 allows remote attackers to obtain configuration information via a... Moderate Unreviewed

CVE-2008-1680 was published May 1, 2022

The PPTP VPN service in Watchguard Firebox before 10, when performing the MS-CHAPv2... Moderate Unreviewed

CVE-2008-1618 was published May 1, 2022

The kernel in IBM AIX 6.1 allows local users with ProbeVue privileges to read arbitrary kernel... Moderate Unreviewed

CVE-2008-1598 was published May 1, 2022

CFNetwork in Safari in Apple Mac OS X before 10.5.3 automatically sends an SSL client certificate... Moderate Unreviewed

CVE-2008-1580 was published May 1, 2022

The sso_util program in Single Sign-On in Apple Mac OS X before 10.5.3 places passwords on the... Low Unreviewed

CVE-2008-1578 was published May 1, 2022

Wiki Server in Apple Mac OS X 10.5 before 10.5.3 allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2008-1579 was published May 1, 2022

phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password, and the (3) Blowfish... Low Unreviewed

CVE-2008-1567 was published May 1, 2022

BolinOS 4.6.1 allows remote attackers to obtain sensitive information via a direct request to... Moderate Unreviewed

CVE-2008-1557 was published May 1, 2022

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2)... Moderate Unreviewed

CVE-2008-1523 was published May 1, 2022

PEEL, possibly 3.x and earlier, allows remote attackers to obtain configuration information via a... Moderate Unreviewed

CVE-2008-1506 was published May 1, 2022

Unspecified vulnerability in the Windows client API in Novell GroupWise 7 before SP3 and 6.5... Low Unreviewed

CVE-2008-1330 was published May 1, 2022

Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain... Moderate Unreviewed

CVE-2008-1318 was published May 1, 2022

ViewVC before 1.0.5 provides revision metadata without properly checking whether access was... Moderate Unreviewed

CVE-2008-1292 was published May 1, 2022

IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 might allow local or remote attackers to obtain... Moderate Unreviewed

CVE-2008-1288 was published May 1, 2022

ViewVC before 1.0.5 stores sensitive information under the web root with insufficient access... Moderate Unreviewed

CVE-2008-1291 was published May 1, 2022

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or... Moderate Unreviewed

CVE-2008-1290 was published May 1, 2022

mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME... Moderate Unreviewed

CVE-2008-1270 was published May 1, 2022

b_banner.stm (aka the login page) on the Deutsche Telekom Speedport W500 DSL router allows remote... High Unreviewed

CVE-2008-1252 was published May 1, 2022

Previous 1…337…354 Next

Previous 1 2 … 335 336 337 338 339 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,846 advisories