Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,964 advisories

Loading
graph.php in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allows remote attackers to obtain... Moderate Unreviewed
CVE-2008-0784 was published May 1, 2022
admin/SA_shipFedExMeter.asp in CandyPress (CP) 4.1.1.26, and possibly other 4.x and 3.x versions,... Moderate Unreviewed
CVE-2008-0736 was published May 1, 2022
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for... High Unreviewed
CVE-2008-0662 was published May 1, 2022
Multiple unspecified vulnerabilities in Adobe Reader and Acrobat before 8.1.2 have unknown impact... High Unreviewed
CVE-2008-0655 was published May 1, 2022
Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote... Moderate Unreviewed
CVE-2008-0636 was published May 1, 2022
Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8,... Moderate Unreviewed
CVE-2008-0593 was published May 1, 2022
Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18,... Moderate Unreviewed
CVE-2008-0598 was published May 1, 2022
The ps program in bos.rte.control in IBM AIX 5.2, 5.3, and 6.1 allows local users to obtain... Moderate Unreviewed
CVE-2008-0589 was published May 1, 2022
modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunderbird... High Unreviewed
CVE-2008-0420 was published May 1, 2022
Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information... Moderate Unreviewed
CVE-2008-0395 was published May 1, 2022
Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when prompting for HTTP Basic... Moderate Unreviewed
CVE-2008-0367 was published May 1, 2022
Paramiko Unsafe randomness usage may allow access to sensitive information High
CVE-2008-0299 was published for paramiko (pip) May 1, 2022
PhotoKorn allows remote attackers to obtain database credentials via a direct request to update... Moderate Unreviewed
CVE-2008-0297 was published May 1, 2022
PHP Webquest 2.6 allows remote attackers to retrieve database credentials via a direct request to... Moderate Unreviewed
CVE-2008-0249 was published May 1, 2022
WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty... Moderate Unreviewed
CVE-2008-0195 was published May 1, 2022
WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid... Moderate Unreviewed
CVE-2008-0191 was published May 1, 2022
Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct... Moderate Unreviewed
CVE-2008-0136 was published May 1, 2022
SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express... Moderate Unreviewed
CVE-2008-0085 was published May 1, 2022
An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe... High Unreviewed
CVE-2008-0082 was published May 1, 2022
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote... Moderate Unreviewed
CVE-2008-0052 was published May 1, 2022
CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites... Moderate Unreviewed
CVE-2008-0050 was published May 1, 2022
Parental Controls in Apple Mac OS X 10.5 through 10.5.1 contacts www.apple.com "when a website is... Moderate Unreviewed
CVE-2008-0041 was published May 1, 2022
Apache Tomcat Sensitive Information Disclosure Moderate
CVE-2008-0002 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended... Low Unreviewed
CVE-2007-6744 was published May 1, 2022
goform/QuickStart_c0 on the GoAhead Web Server on the FS4104-AW (aka rooter) VDSL device contains... Moderate Unreviewed
CVE-2007-6702 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database