GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,255

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,277 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 does not properly validate... Moderate Unreviewed

CVE-2007-4680 was published May 1, 2022

The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X... Moderate Unreviewed

CVE-2007-4692 was published May 1, 2022

Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows... Moderate Unreviewed

CVE-2007-5085 was published May 1, 2022

report.cgi in Google Urchin allows remote attackers to bypass authentication and obtain sensitive... Moderate Unreviewed

CVE-2007-5113 was published May 1, 2022

The connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1... Moderate Unreviewed

CVE-2007-5162 was published May 1, 2022

cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when... Moderate Unreviewed

CVE-2007-5374 was published May 1, 2022

The Gentoo ebuild of MLDonkey before 2.9.0-r3 has a p2p user account with an empty default... Moderate Unreviewed

CVE-2007-5714 was published May 1, 2022

The (1) Net::ftptls, (2) Net::telnets, (3) Net::imap, (4) Net::pop, and (5) Net::smtp libraries... Moderate Unreviewed

CVE-2007-5770 was published May 1, 2022

Mail in Apple Mac OS X 10.4.11 and 10.5.1, when an SMTP account has been set up using Account... Moderate Unreviewed

CVE-2007-5855 was published May 1, 2022

dirsys/modules/auth.php in JBC Explorer 7.20 RC1 and earlier does not require authentication,... Moderate Unreviewed

CVE-2007-5913 was published May 1, 2022

details.php in BtiTracker before 1.4.5, when torrent viewing is disabled for guests, allows... Moderate Unreviewed

CVE-2007-5987 was published May 1, 2022

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash,... Moderate Unreviewed

CVE-2007-6013 was published May 1, 2022

gnump3d 2.9final does not apply password protection to its plugins, which might allow remote... Moderate Unreviewed

CVE-2007-6130 was published May 1, 2022

Unspecified vulnerability in Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-01... Moderate Unreviewed

CVE-2007-6145 was published May 1, 2022

Flat PHP Board 1.2 and earlier allows remote attackers to bypass authentication and obtain... Moderate Unreviewed

CVE-2007-6398 was published May 1, 2022

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x... Moderate Unreviewed

CVE-2007-6430 was published May 1, 2022

DBMail before 2.2.9, when using authldap with an LDAP server that supports anonymous login such... Moderate Unreviewed

CVE-2007-6714 was published May 1, 2022

Improper Authentication in pyftpdlib Moderate

CVE-2007-6737 was published for pyftpdlib (pip) May 1, 2022

Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6... Moderate Unreviewed

CVE-2008-0150 was published May 1, 2022

Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set... Moderate Unreviewed

CVE-2008-0210 was published May 1, 2022

admin/config.php in Evilsentinel 1.0.9 and earlier allows remote attackers to bypass the CAPTCHA... Moderate Unreviewed

CVE-2008-0351 was published May 1, 2022

The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication... Moderate Unreviewed

CVE-2008-0403 was published May 1, 2022

HTTP File Server (HFS) before 2.2c tags HTTP request log entries with the username sent during... Moderate Unreviewed

CVE-2008-0407 was published May 1, 2022

HTTP File Server (HFS) before 2.2c allows remote attackers to append arbitrary text to the log... Moderate Unreviewed

CVE-2008-0408 was published May 1, 2022

HTTP File Server (HFS) before 2.2c allows remote attackers to obtain configuration and usage... Moderate Unreviewed

CVE-2008-0410 was published May 1, 2022

Previous 1 2 3 4 5 6 7 … 51 52 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,277 advisories