GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,843 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA... Moderate Unreviewed

CVE-2007-4669 was published May 1, 2022

backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username,... Low Unreviewed

CVE-2007-4656 was published May 1, 2022

Unspecified vulnerability in HP ProCurve Manager and HP ProCurve Manager Plus 2.3 and earlier... Moderate Unreviewed

CVE-2007-4514 was published May 1, 2022

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map... Low Unreviewed

CVE-2007-3850 was published May 1, 2022

Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4... Moderate Unreviewed

CVE-2007-3756 was published May 1, 2022

class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to obtain... Moderate Unreviewed

CVE-2007-3651 was published May 1, 2022

myWebland myBloggie 2.1.6 allow remote attackers to obtain sensitive information via (1) an... Moderate Unreviewed

CVE-2007-3650 was published May 1, 2022

Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read files in the local Firefox... Moderate Unreviewed

CVE-2007-3074 was published May 1, 2022

PsychoStats 3.0.6b and earlier allows remote attackers to obtain sensitive information via a... Moderate Unreviewed

CVE-2007-2780 was published May 1, 2022

OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to... Moderate Unreviewed

CVE-2007-2768 was published May 1, 2022

The substr_count function in PHP 5.2.1 and earlier allows context-dependent attackers to obtain... Moderate Unreviewed

CVE-2007-2748 was published May 1, 2022

Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell... Moderate Unreviewed

CVE-2007-2590 was published May 1, 2022

The RecentChanges feature in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to... Moderate Unreviewed

CVE-2007-2552 was published May 1, 2022

Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially... High Unreviewed

CVE-2007-2479 was published May 1, 2022

QuickTime for Java in Apple Quicktime before 7.2 does not perform sufficient "access control,"... Moderate Unreviewed

CVE-2007-2402 was published May 1, 2022

The jQuery framework exchanges data using JavaScript Object Notation (JSON) without an associated... Moderate Unreviewed

CVE-2007-2379 was published May 1, 2022

Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non... Moderate Unreviewed

CVE-2007-2353 was published May 1, 2022

Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain path information via a... Moderate Unreviewed

CVE-2007-2253 was published May 1, 2022

The FTP protocol implementation in Opera 9.10 allows remote attackers to allows remote servers to... Moderate Unreviewed

CVE-2007-1563 was published May 1, 2022

The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to... Moderate Unreviewed

CVE-2007-1564 was published May 1, 2022

The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and 2.x before 2.0.0.3 allows... Moderate Unreviewed

CVE-2007-1562 was published May 1, 2022

sitex allows remote attackers to obtain potentially sensitive information via a ' (quote) value... Moderate Unreviewed

CVE-2007-1237 was published May 1, 2022

Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table (IDT)... Low Unreviewed

CVE-2007-1194 was published May 1, 2022

inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and earlier allows remote... Moderate Unreviewed

CVE-2007-1167 was published May 1, 2022

The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI as a ChromeProtocol and can... Moderate Unreviewed

CVE-2007-1116 was published May 1, 2022

Previous 1…342…354 Next

Previous 1 2 … 340 341 342 343 344 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,843 advisories