GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,421

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,964 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The CryptGenRandom function in Microsoft Windows 2000 generates predictable values, which makes... High Unreviewed

CVE-2007-6043 was published May 1, 2022

X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a... Moderate Unreviewed

CVE-2007-5958 was published May 1, 2022

The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a... Moderate Unreviewed

CVE-2007-5934 was published May 1, 2022

The modules/mdop.m in the Cypress 1.0k script for BitchX, as downloaded from a distribution site... Moderate Unreviewed

CVE-2007-5922 was published May 1, 2022

The output_add_rewrite_var function in PHP before 5.2.5 rewrites local forms in which the ACTION... Moderate Unreviewed

CVE-2007-5899 was published May 1, 2022

dialog.php in CONTENTCustomizer 3.1mp and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2007-5816 was published May 1, 2022

index.php in the File Manager module in Flatnuke 3 allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2007-5774 was published May 1, 2022

Incomplete blacklist vulnerability in the Certificate Authority (CA) in IBM Lotus Domino before 7... Low Unreviewed

CVE-2007-5701 was published May 1, 2022

LiteSpeed Web Server before 3.2.4 allows remote attackers to trigger use of an arbitrary MIME... Moderate Unreviewed

CVE-2007-5654 was published May 1, 2022

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP... Moderate Unreviewed

CVE-2007-5638 was published May 1, 2022

The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP... Moderate Unreviewed

CVE-2007-5637 was published May 1, 2022

BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic Enterprise 5.1 before RP174, echo... Moderate Unreviewed

CVE-2007-5576 was published May 1, 2022

Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via... Moderate Unreviewed

CVE-2007-5550 was published May 1, 2022

Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain... Moderate Unreviewed

CVE-2007-5555 was published May 1, 2022

Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle... High Unreviewed

CVE-2007-5554 was published May 1, 2022

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command... Low Unreviewed

CVE-2007-5549 was published May 1, 2022

Microsoft Expression Media stores the catalog password in cleartext in the catalog IVC file,... Low Unreviewed

CVE-2007-5470 was published May 1, 2022

StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote... Moderate Unreviewed

CVE-2007-5473 was published May 1, 2022

CMS Made Simple 1.1.3.1 allows remote attackers to obtain the full path via a direct request for... Moderate Unreviewed

CVE-2007-5444 was published May 1, 2022

CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user... Moderate Unreviewed

CVE-2007-5439 was published May 1, 2022

include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information... High Unreviewed

CVE-2007-5431 was published May 1, 2022

Stride 1.0 has a default administrator username of "scott" with the password "running", which... High Unreviewed

CVE-2007-5432 was published May 1, 2022

httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management ... High Unreviewed

CVE-2007-5413 was published May 1, 2022

Layton HelpBox 3.7.1 generates different responses depending on whether or not a username is... Moderate Unreviewed

CVE-2007-5404 was published May 1, 2022

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when running on Linux systems with... Moderate Unreviewed

CVE-2007-5337 was published May 1, 2022

Previous 1…374…399 Next

Previous 1 2 … 372 373 374 375 376 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,964 advisories