GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,421

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,563 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Apple QuickTime before 7.4.5 does not properly handle external URLs in movies, which allows... Moderate Unreviewed

CVE-2008-1014 was published May 1, 2022

Incomplete blacklist vulnerability in javaUpload.php in Postlet in the FileManager module in CMS... High Unreviewed

CVE-2008-2267 was published May 1, 2022

plugins/maps/db_handler.php in LinPHA 1.3.3 and earlier does not require authentication for a... Moderate Unreviewed

CVE-2008-1856 was published May 1, 2022

ExBB Italia 0.22 and earlier only checks GET requests that use the QUERY_STRING for certain path... Moderate Unreviewed

CVE-2008-1862 was published May 1, 2022

The Journal module in Tru-Zone Nuke ET 3.x allows remote attackers to obtain access to arbitrary... Moderate Unreviewed

CVE-2008-2134 was published May 1, 2022

The Web UI interface in (1) BitTorrent before 6.0.3 build 8642 and (2) uTorrent before 1.8beta... Moderate Unreviewed

CVE-2008-0071 was published May 1, 2022

Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 before Update 4, JDK and JRE 5.0... High Unreviewed

CVE-2008-3111 was published May 1, 2022

Apple QuickTime before 7.5 uses the url.dll!FileProtocolHandler handler for unrecognized URIs in... Moderate Unreviewed

CVE-2008-1585 was published May 1, 2022

Microsoft Windows XP SP2 and SP3, and Server 2003 SP1 and SP2, does not properly validate the... High Unreviewed

CVE-2008-1440 was published May 1, 2022

The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel 2.6 before 2.6.26-rc6... High Unreviewed

CVE-2008-2750 was published May 1, 2022

Simple DNS Plus 4.1, 5.0, and possibly other versions before 5.1.101 allows remote attackers to... Moderate Unreviewed

CVE-2008-3208 was published May 1, 2022

The content layout component in Mozilla Firefox 3.0 and 3.0.1 allows remote attackers to cause a... Moderate Unreviewed

CVE-2008-3444 was published May 2, 2022

libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 allows remote authenticated... High Unreviewed

CVE-2008-4096 was published May 2, 2022

The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1... High Unreviewed

CVE-2008-3657 was published May 2, 2022

The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through 1.8.7-p72, and 1.9 allows... Moderate Unreviewed

CVE-2008-3790 was published May 2, 2022

The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary... Moderate Unreviewed

CVE-2008-3907 was published May 2, 2022

CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject... Moderate Unreviewed

CVE-2008-3906 was published May 2, 2022

Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux... Low Unreviewed

CVE-2008-3889 was published May 2, 2022

WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username... Moderate Unreviewed

CVE-2008-4106 was published May 2, 2022

Opera before 9.52 does not ensure that the address field of a news feed represents the feed's... Moderate Unreviewed

CVE-2008-4200 was published May 2, 2022

Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has... High Unreviewed

CVE-2008-4358 was published May 2, 2022

The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface ... Moderate Unreviewed

CVE-2008-4410 was published May 2, 2022

Directory traversal vulnerability in the RPC interface (asdbapi.dll) in CA ARCserve Backup ... High Unreviewed

CVE-2008-4397 was published May 2, 2022

The Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.27... High Unreviewed

CVE-2008-4618 was published May 17, 2022

Opera before 9.62 allows remote attackers to execute arbitrary commands via the History Search... High Unreviewed

CVE-2008-4794 was published May 17, 2022

Previous 1…397…400 Next

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,563 advisories