Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,277 advisories

Loading
RSSFromParent in Plain Black WebGUI before 7.5.13 does not restrict view access to Collaboration... Moderate Unreviewed
CVE-2008-3503 was published May 2, 2022
The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly... Moderate Unreviewed
CVE-2008-1883 was published May 1, 2022
DBMail before 2.2.9, when using authldap with an LDAP server that supports anonymous login such... Moderate Unreviewed
CVE-2007-6714 was published May 1, 2022
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2)... Moderate Unreviewed
CVE-2008-1528 was published May 1, 2022
report.cgi in Google Urchin allows remote attackers to bypass authentication and obtain sensitive... Moderate Unreviewed
CVE-2007-5113 was published May 1, 2022
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers... Moderate Unreviewed
CVE-2007-2243 was published May 1, 2022
A vulnerability has been found in qinguoyi TinyWebServer up to 1.0 and classified as critical.... Moderate Unreviewed
CVE-2025-3268 was published Apr 4, 2025
Vulnerability in Drupal Material Admin.This issue affects Material Admin: *.*. Moderate Unreviewed
CVE-2025-3061 was published Apr 1, 2025
m-FILTER prior to Ver.5.70R01 (Ver.5 Series) and m-FILTER prior to Ver.4.87R04 (Ver.4 Series)... Moderate Unreviewed
CVE-2023-22278 was published Jan 17, 2023
A logic issue was addressed with improved state management. This issue is fixed in visionOS 2.4,... Moderate Unreviewed
CVE-2025-30432 was published Apr 1, 2025
Session fixation vulnerability in SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to... Moderate Unreviewed
CVE-2008-3738 was published May 2, 2022
file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) before 4.6.3 allows... Moderate Unreviewed
CVE-2007-4043 was published May 1, 2022
Session fixation vulnerability in eXV2 CMS 2.0.4.3 and earlier allows remote attackers to hijack... Moderate Unreviewed
CVE-2007-1966 was published May 1, 2022
Windows NT Terminal Server performs extra work when a client opens a new connection but before it... Moderate Unreviewed
CVE-1999-0680 was published Apr 30, 2022
Vulnerability in Drupal Drupal Admin LTE theme.This issue affects Drupal Admin LTE theme: *.*. Moderate Unreviewed
CVE-2025-3062 was published Apr 1, 2025
Session fixation vulnerability in ownCloud before 6.0.2, when PHP is configured to accept session... Moderate Unreviewed
CVE-2014-2047 was published May 17, 2022
Improper authentication vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2,... Moderate Unreviewed
CVE-2024-28006 was published Mar 28, 2024
Improper password reset in PAM Module in Devolutions Server 2024.3.10.0 and earlier allows an... Moderate Unreviewed
CVE-2025-1231 was published Feb 11, 2025
An attacker with access to the network where the vulnerable device is located could capture... Moderate Unreviewed
CVE-2025-2859 was published Mar 28, 2025
IBM Cloud Pak Foundational Services Identity Provider (idP) API (IBM Cloud Pak for Automation 18... Moderate Unreviewed
CVE-2023-38367 was published Feb 29, 2024
Incorrect Access Control in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same... Moderate Unreviewed
CVE-2022-45724 was published Feb 13, 2023
A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an... Moderate Unreviewed
CVE-2024-20301 was published Mar 6, 2024
Parse Server has an OAuth login vulnerability Moderate
CVE-2025-30168 was published for parse-server (npm) Mar 21, 2025
tiaod dblythy
mtrezza
Apache Submarine Commons Utils has a hard-coded secret Moderate
CVE-2024-36264 was published for apache-submarine (Maven) Jun 12, 2024
An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor... Moderate Unreviewed
CVE-2022-45168 was published Jun 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database