GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,619
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,640
Maven 6,106
npm 4,265
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,076

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,843 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when prompting for HTTP Basic... Moderate Unreviewed

CVE-2008-0367 was published May 1, 2022

PhotoKorn allows remote attackers to obtain database credentials via a direct request to update... Moderate Unreviewed

CVE-2008-0297 was published May 1, 2022

PHP Webquest 2.6 allows remote attackers to retrieve database credentials via a direct request to... Moderate Unreviewed

CVE-2008-0249 was published May 1, 2022

WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty... Moderate Unreviewed

CVE-2008-0195 was published May 1, 2022

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid... Moderate Unreviewed

CVE-2008-0191 was published May 1, 2022

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct... Moderate Unreviewed

CVE-2008-0136 was published May 1, 2022

SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express... Moderate Unreviewed

CVE-2008-0085 was published May 1, 2022

An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe... High Unreviewed

CVE-2008-0082 was published May 1, 2022

CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote... Moderate Unreviewed

CVE-2008-0052 was published May 1, 2022

CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites... Moderate Unreviewed

CVE-2008-0050 was published May 1, 2022

Parental Controls in Apple Mac OS X 10.5 through 10.5.1 contacts www.apple.com "when a website is... Moderate Unreviewed

CVE-2008-0041 was published May 1, 2022

Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended... Low Unreviewed

CVE-2007-6744 was published May 1, 2022

goform/QuickStart_c0 on the GoAhead Web Server on the FS4104-AW (aka rooter) VDSL device contains... Moderate Unreviewed

CVE-2007-6702 was published May 1, 2022

2z project 0.9.6.1 allows remote attackers to obtain sensitive information via (1) a request to... Moderate Unreviewed

CVE-2007-6660 was published May 1, 2022

OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain configuration information via... Moderate Unreviewed

CVE-2007-6606 was published May 1, 2022

OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain sensitive information via a... Moderate Unreviewed

CVE-2007-6607 was published May 1, 2022

The Custom Button Installer dialog in Google Toolbar 4 and 5 beta presents certain domain names... Moderate Unreviewed

CVE-2007-6536 was published May 1, 2022

Opera before 9.25 allows remote attackers to obtain potentially sensitive memory contents via a... High Unreviewed

CVE-2007-6524 was published May 1, 2022

PHP MySQL Banner Exchange 2.2.1 stores sensitive information under the web root with insufficient... Moderate Unreviewed

CVE-2007-6512 was published May 1, 2022

HP eSupportDiagnostics ActiveX control (hpediag.dll) 1.0.11.0 exports dangerous methods, which... Moderate Unreviewed

CVE-2007-6513 was published May 1, 2022

Apache HTTP Server, when running on Linux with a document root on a Windows share mounted using... Moderate Unreviewed

CVE-2007-6514 was published May 1, 2022

Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to obtain... Moderate Unreviewed

CVE-2007-6502 was published May 1, 2022

GF-3XPLORER 2.4 allows remote attackers to obtain configuration information via a direct request... Moderate Unreviewed

CVE-2007-6476 was published May 1, 2022

The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly... High Unreviewed

CVE-2007-6417 was published May 1, 2022

The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password... Low Unreviewed

CVE-2007-6418 was published May 1, 2022

Previous 1…339…354 Next

Previous 1 2 … 337 338 339 340 341 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,843 advisories