GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,424

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,964 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

PsychoStats 3.0.6b and earlier allows remote attackers to obtain sensitive information via a... Moderate Unreviewed

CVE-2007-2780 was published May 1, 2022

OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to... Moderate Unreviewed

CVE-2007-2768 was published May 1, 2022

The substr_count function in PHP 5.2.1 and earlier allows context-dependent attackers to obtain... Moderate Unreviewed

CVE-2007-2748 was published May 1, 2022

Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell... Moderate Unreviewed

CVE-2007-2590 was published May 1, 2022

The RecentChanges feature in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to... Moderate Unreviewed

CVE-2007-2552 was published May 1, 2022

Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially... High Unreviewed

CVE-2007-2479 was published May 1, 2022

QuickTime for Java in Apple Quicktime before 7.2 does not perform sufficient "access control,"... Moderate Unreviewed

CVE-2007-2402 was published May 1, 2022

The jQuery framework exchanges data using JavaScript Object Notation (JSON) without an associated... Moderate Unreviewed

CVE-2007-2379 was published May 1, 2022

Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non... Moderate Unreviewed

CVE-2007-2353 was published May 1, 2022

Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain path information via a... Moderate Unreviewed

CVE-2007-2253 was published May 1, 2022

The FTP protocol implementation in Opera 9.10 allows remote attackers to allows remote servers to... Moderate Unreviewed

CVE-2007-1563 was published May 1, 2022

The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to... Moderate Unreviewed

CVE-2007-1564 was published May 1, 2022

The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and 2.x before 2.0.0.3 allows... Moderate Unreviewed

CVE-2007-1562 was published May 1, 2022

sitex allows remote attackers to obtain potentially sensitive information via a ' (quote) value... Moderate Unreviewed

CVE-2007-1237 was published May 1, 2022

Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table (IDT)... Low Unreviewed

CVE-2007-1194 was published May 1, 2022

inc/filebrowser/browser.php in deV!L`z Clanportal (DZCP) 1.4.5 and earlier allows remote... Moderate Unreviewed

CVE-2007-1167 was published May 1, 2022

The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI as a ChromeProtocol and can... Moderate Unreviewed

CVE-2007-1116 was published May 1, 2022

Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin... Moderate Unreviewed

CVE-2007-1044 was published May 1, 2022

Unspecified vulnerability in LifeType before 1.1.6, and 1.2 before 1.2-beta2, allows remote... Moderate Unreviewed

CVE-2007-0979 was published May 1, 2022

Ezboxx Portal System Beta 0.7.6 and earlier allows remote attackers to obtain sensitive... High Unreviewed

CVE-2007-0259 was published May 1, 2022

Cisco Clean Access (CCA) 3.5.x through 3.5.9 and 3.6.x through 3.6.1.1 on the Clean Access... High Unreviewed

CVE-2007-0058 was published May 1, 2022

Interpretation conflict in ASP.NET in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000... High Unreviewed

CVE-2007-0042 was published May 1, 2022

The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before... Moderate Unreviewed

CVE-2007-0011 was published May 1, 2022

The (1) dlback.php and (2) dlback.cgi scripts in Hot Links allow remote attackers to obtain... Moderate Unreviewed

CVE-2006-7086 was published May 1, 2022

install/loader_help.php in Headstart Solutions DeskPRO allows remote attackers to obtain... Moderate Unreviewed

CVE-2006-6998 was published May 1, 2022

Previous 1…376…399 Next

Previous 1 2 … 374 375 376 377 378 … 398 399 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,964 advisories