Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,846 advisories

Loading
Juniper Networks Secure Access 2000 5.5 R1 (build 11711) allows remote attackers to obtain... Moderate Unreviewed
CVE-2008-1181 was published May 1, 2022
Flyspray 0.9.9.4 generates different error messages depending on whether the username is valid or... Moderate Unreviewed
CVE-2008-1166 was published May 1, 2022
Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6,... High Unreviewed
CVE-2008-1155 was published May 1, 2022
OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 generates different responses depending... Moderate Unreviewed
CVE-2008-1135 was published May 1, 2022
Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol ... High Unreviewed
CVE-2008-1113 was published May 1, 2022
mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a... Moderate Unreviewed
CVE-2008-1111 was published May 1, 2022
Apple QuickTime before 7.4.5 does not properly handle external URLs in movies, which allows... Moderate Unreviewed
CVE-2008-1014 was published May 1, 2022
WebCore, as used in Apple Safari before 3.1, does not properly mask the password field when... Low Unreviewed
CVE-2008-1005 was published May 1, 2022
The Printing component in Apple Mac OS X 10.5.2 might save authentication credentials to disk... Low Unreviewed
CVE-2008-0996 was published May 1, 2022
Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a PDF file with encryption, which... Low Unreviewed
CVE-2008-0994 was published May 1, 2022
Podcast Capture in Podcast Producer for Apple Mac OS X 10.5.2 invokes a subtask with passwords in... Low Unreviewed
CVE-2008-0993 was published May 1, 2022
The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4 when printing to an encrypted PDF... Low Unreviewed
CVE-2008-0995 was published May 1, 2022
notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have... Moderate Unreviewed
CVE-2008-0990 was published May 1, 2022
Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name... Moderate Unreviewed
CVE-2008-0978 was published May 1, 2022
Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows... Moderate Unreviewed
CVE-2008-0938 was published May 1, 2022
BEA WebLogic Server and Express 7.0 through 10.0 allows remote attackers to conduct brute force... High Unreviewed
CVE-2008-0901 was published May 1, 2022
Unspecified vulnerability in the download servlet in BEA Plumtree Collaboration 4.1 through SP2... High Unreviewed
CVE-2008-0904 was published May 1, 2022
BEA WebLogic Server and WebLogic Express 9.0 and 9.1 exposes the web service's WSDL and security... Moderate Unreviewed
CVE-2008-0863 was published May 1, 2022
graph.php in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allows remote attackers to obtain... Moderate Unreviewed
CVE-2008-0784 was published May 1, 2022
admin/SA_shipFedExMeter.asp in CandyPress (CP) 4.1.1.26, and possibly other 4.x and 3.x versions,... Moderate Unreviewed
CVE-2008-0736 was published May 1, 2022
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for... High Unreviewed
CVE-2008-0662 was published May 1, 2022
Multiple unspecified vulnerabilities in Adobe Reader and Acrobat before 8.1.2 have unknown impact... High Unreviewed
CVE-2008-0655 was published May 1, 2022
Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote... Moderate Unreviewed
CVE-2008-0636 was published May 1, 2022
Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8,... Moderate Unreviewed
CVE-2008-0593 was published May 1, 2022
Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18,... Moderate Unreviewed
CVE-2008-0598 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database