GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,574

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,966 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication passwords in the BIOS Keyboard... Low Unreviewed

CVE-2008-3898 was published May 2, 2022

Grub Legacy 0.97 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer... Low Unreviewed

CVE-2008-3896 was published May 2, 2022

Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the... Low Unreviewed

CVE-2008-3893 was published May 2, 2022

LILO 22.6.1 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and... Low Unreviewed

CVE-2008-3895 was published May 2, 2022

IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication passwords in the BIOS Keyboard... Low Unreviewed

CVE-2008-3894 was published May 2, 2022

The Base Service Utilities component in IBM DB2 9.1 before Fixpak 5 retains a cleartext password... Moderate Unreviewed

CVE-2008-3857 was published May 2, 2022

The SIP Enablement Services (SES) Server in Avaya SIP Enablement Services 5.0, and Communication... Low Unreviewed

CVE-2008-3777 was published May 2, 2022

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote... Moderate Unreviewed

CVE-2008-3651 was published May 2, 2022

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have... Low Unreviewed

CVE-2008-3644 was published May 2, 2022

Apple iTunes before 8.0 on Mac OS X 10.4.11, when iTunes Music Sharing is enabled but blocked by... Low Unreviewed

CVE-2008-3634 was published May 2, 2022

The CQWeb login page in IBM Rational ClearQuest 7.0.1 allows remote attackers to obtain... Moderate Unreviewed

CVE-2008-3550 was published May 2, 2022

Unspecified vulnerability in HP OpenView Select Identity (HPSI) Connectors on Windows, as used in... Low Unreviewed

CVE-2008-3539 was published May 2, 2022

VMware VirtualCenter 2.5 before Update 2 and 2.0.2 before Update 5 relies on client-side "enabled... Moderate Unreviewed

CVE-2008-3514 was published May 2, 2022

Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of... Moderate Unreviewed

CVE-2008-3474 was published May 2, 2022

Vtiger CRM before 5.0.4 stores sensitive information under the web root with insufficient access... Moderate Unreviewed

CVE-2008-3458 was published May 2, 2022

PhpWebGallery 1.7.0 and 1.7.1 allows remote authenticated users with advisor privileges to obtain... Moderate Unreviewed

CVE-2008-3451 was published May 2, 2022

XRMS CRM 1.99.2 allows remote attackers to obtain configuration information via a direct request... Moderate Unreviewed

CVE-2008-3400 was published May 1, 2022

search_result.cfm in Jobbex JobSite allows remote attackers to obtain sensitive information via... Moderate Unreviewed

CVE-2008-3339 was published May 1, 2022

Moodle 1.6.5, when display_errors is enabled, allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2008-3327 was published May 1, 2022

BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache... Moderate Unreviewed

CVE-2008-3304 was published May 1, 2022

EMC Dantz Retrospect Backup Client 7.5.116 sends the password hash in cleartext at an unspecified... Moderate Unreviewed

CVE-2008-3289 was published May 1, 2022

The default configuration of Red Hat Enterprise IPA 1.0.0 and FreeIPA before 1.1.1 places ldap://... Moderate Unreviewed

CVE-2008-3274 was published May 1, 2022

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound... Low Unreviewed

CVE-2008-3272 was published May 1, 2022

OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration... Low Unreviewed

CVE-2008-3259 was published May 1, 2022

qiomkfile in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX,... Moderate Unreviewed

CVE-2008-3248 was published May 1, 2022

Previous 1…368…399 Next

Previous 1 2 … 366 367 368 369 370 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,966 advisories