GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,056

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,843 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via... Moderate Unreviewed

CVE-2007-5550 was published May 1, 2022

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command... Low Unreviewed

CVE-2007-5549 was published May 1, 2022

Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle... High Unreviewed

CVE-2007-5554 was published May 1, 2022

StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote... Moderate Unreviewed

CVE-2007-5473 was published May 1, 2022

Microsoft Expression Media stores the catalog password in cleartext in the catalog IVC file,... Low Unreviewed

CVE-2007-5470 was published May 1, 2022

CMS Made Simple 1.1.3.1 allows remote attackers to obtain the full path via a direct request for... Moderate Unreviewed

CVE-2007-5444 was published May 1, 2022

include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information... High Unreviewed

CVE-2007-5431 was published May 1, 2022

CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user... Moderate Unreviewed

CVE-2007-5439 was published May 1, 2022

Stride 1.0 has a default administrator username of "scott" with the password "running", which... High Unreviewed

CVE-2007-5432 was published May 1, 2022

httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management ... High Unreviewed

CVE-2007-5413 was published May 1, 2022

Layton HelpBox 3.7.1 generates different responses depending on whether or not a username is... Moderate Unreviewed

CVE-2007-5404 was published May 1, 2022

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when running on Linux systems with... Moderate Unreviewed

CVE-2007-5337 was published May 1, 2022

Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain sensitive system information... Moderate Unreviewed

CVE-2007-5335 was published May 1, 2022

Battlefront Dropteam 1.3.3 and earlier sends the client's online account name and password to the... Moderate Unreviewed

CVE-2007-5264 was published May 1, 2022

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell... High Unreviewed

CVE-2007-5196 was published May 1, 2022

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell... Moderate Unreviewed

CVE-2007-5195 was published May 1, 2022

Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by... Moderate Unreviewed

CVE-2007-5172 was published May 1, 2022

SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control,... Moderate Unreviewed

CVE-2007-5129 was published May 1, 2022

ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content... Moderate Unreviewed

CVE-2007-5034 was published May 1, 2022

Unspecified vulnerability in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1,... Moderate Unreviewed

CVE-2007-5022 was published May 1, 2022

Dibbler 0.6.0 on Linux uses weak world-writable permissions for unspecified files in /var/lib... High Unreviewed

CVE-2007-5028 was published May 1, 2022

webbatch.exe in WebBatch allows remote attackers to obtain sensitive information via the... Moderate Unreviewed

CVE-2007-5011 was published May 1, 2022

The SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2... Moderate Unreviewed

CVE-2007-4991 was published May 1, 2022

SAXON 5.4, with display_errors enabled, allows remote attackers to obtain sensitive information... Moderate Unreviewed

CVE-2007-4861 was published May 1, 2022

The Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain... Moderate Unreviewed

CVE-2007-4688 was published May 1, 2022

Previous 1…341…354 Next

Previous 1 2 … 339 340 341 342 343 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,843 advisories