Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,843 advisories

Loading
IBM Tivoli Provisioning Manager Express provides unspecified information in error messages when ... Moderate Unreviewed
CVE-2007-6408 was published May 1, 2022
Sergey Lyubka Simple HTTPD (shttpd) 1.38 and earlier on Windows allows remote attackers to... Moderate Unreviewed
CVE-2007-6405 was published May 1, 2022
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable... Moderate Unreviewed
CVE-2007-6283 was published May 1, 2022
etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for... Low Unreviewed
CVE-2007-6249 was published May 1, 2022
TuMusika Evolution 1.7R5 allows remote attackers to obtain configuration information via a direct... High Unreviewed
CVE-2007-6221 was published May 1, 2022
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and... Low Unreviewed
CVE-2007-6206 was published May 1, 2022
The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows... Moderate Unreviewed
CVE-2007-6197 was published May 1, 2022
The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled,... Low Unreviewed
CVE-2007-6190 was published May 1, 2022
The web management interface in Citrix NetScaler 8.0 build 47.8 stores the device's primary IP... Moderate Unreviewed
CVE-2007-6193 was published May 1, 2022
index.php in Tilde CMS 4.x and earlier allows remote attackers to obtain sensitive information... Moderate Unreviewed
CVE-2007-6161 was published May 1, 2022
The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through... Low Unreviewed
CVE-2007-6150 was published May 1, 2022
The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT... Moderate Unreviewed
CVE-2007-6095 was published May 1, 2022
The CryptGenRandom function in Microsoft Windows 2000 generates predictable values, which makes... High Unreviewed
CVE-2007-6043 was published May 1, 2022
X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a... Moderate Unreviewed
CVE-2007-5958 was published May 1, 2022
The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a... Moderate Unreviewed
CVE-2007-5934 was published May 1, 2022
The modules/mdop.m in the Cypress 1.0k script for BitchX, as downloaded from a distribution site... Moderate Unreviewed
CVE-2007-5922 was published May 1, 2022
The output_add_rewrite_var function in PHP before 5.2.5 rewrites local forms in which the ACTION... Moderate Unreviewed
CVE-2007-5899 was published May 1, 2022
dialog.php in CONTENTCustomizer 3.1mp and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2007-5816 was published May 1, 2022
index.php in the File Manager module in Flatnuke 3 allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2007-5774 was published May 1, 2022
Incomplete blacklist vulnerability in the Certificate Authority (CA) in IBM Lotus Domino before 7... Low Unreviewed
CVE-2007-5701 was published May 1, 2022
LiteSpeed Web Server before 3.2.4 allows remote attackers to trigger use of an arbitrary MIME... Moderate Unreviewed
CVE-2007-5654 was published May 1, 2022
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP... Moderate Unreviewed
CVE-2007-5637 was published May 1, 2022
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP... Moderate Unreviewed
CVE-2007-5638 was published May 1, 2022
BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo... Moderate Unreviewed
CVE-2007-5576 was published May 1, 2022
Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain... Moderate Unreviewed
CVE-2007-5555 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database