Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,964 advisories

Loading
Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain sensitive system information... Moderate Unreviewed
CVE-2007-5335 was published May 1, 2022
Exposure of Sensitive Information in Apache Tomcat Moderate
CVE-2007-5333 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Battlefront Dropteam 1.3.3 and earlier sends the client's online account name and password to the... Moderate Unreviewed
CVE-2007-5264 was published May 1, 2022
FTP backend for Duplicity Discloses Passwords to Process Listing Moderate
CVE-2007-5201 was published for duplicity (pip) May 1, 2022
Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell... Moderate Unreviewed
CVE-2007-5195 was published May 1, 2022
Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell... High Unreviewed
CVE-2007-5196 was published May 1, 2022
Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by... Moderate Unreviewed
CVE-2007-5172 was published May 1, 2022
SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control,... Moderate Unreviewed
CVE-2007-5129 was published May 1, 2022
ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content... Moderate Unreviewed
CVE-2007-5034 was published May 1, 2022
Dibbler 0.6.0 on Linux uses weak world-writable permissions for unspecified files in /var/lib... High Unreviewed
CVE-2007-5028 was published May 1, 2022
Unspecified vulnerability in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1,... Moderate Unreviewed
CVE-2007-5022 was published May 1, 2022
webbatch.exe in WebBatch allows remote attackers to obtain sensitive information via the... Moderate Unreviewed
CVE-2007-5011 was published May 1, 2022
The SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2... Moderate Unreviewed
CVE-2007-4991 was published May 1, 2022
SAXON 5.4, with display_errors enabled, allows remote attackers to obtain sensitive information... Moderate Unreviewed
CVE-2007-4861 was published May 1, 2022
The Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain... Moderate Unreviewed
CVE-2007-4688 was published May 1, 2022
The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA... Moderate Unreviewed
CVE-2007-4669 was published May 1, 2022
backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username,... Low Unreviewed
CVE-2007-4656 was published May 1, 2022
Unspecified vulnerability in HP ProCurve Manager and HP ProCurve Manager Plus 2.3 and earlier... Moderate Unreviewed
CVE-2007-4514 was published May 1, 2022
The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map... Low Unreviewed
CVE-2007-3850 was published May 1, 2022
Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4... Moderate Unreviewed
CVE-2007-3756 was published May 1, 2022
class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to obtain... Moderate Unreviewed
CVE-2007-3651 was published May 1, 2022
myWebland myBloggie 2.1.6 allow remote attackers to obtain sensitive information via (1) an... Moderate Unreviewed
CVE-2007-3650 was published May 1, 2022
Apache Tomcat Mishandles Character Sequence in Cookies Moderate
CVE-2007-3385 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat treats single quotes as delimiters in cookies Moderate
CVE-2007-3382 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read files in the local Firefox... Moderate Unreviewed
CVE-2007-3074 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database