Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Loading
The FTP server on the Linksys WRT54G 7 router with 7.00.1 firmware does not verify authentication... High Unreviewed
CVE-2008-1268 was published May 1, 2022
The Linksys WRT54G router has "admin" as its default FTP password, which allows remote attackers... High Unreviewed
CVE-2008-1264 was published May 1, 2022
The administration panel on the Airspan WiMax ProST 4.1 antenna with 6.5.38.0 software does not... High Unreviewed
CVE-2008-1262 was published May 1, 2022
The Zyxel P-2602HW-D1A router with 3.40(AJZ.1) firmware maintains authentication state by IP... High Unreviewed
CVE-2008-1259 was published May 1, 2022
cgi-bin/setup_dns.exe on the Belkin F5D7230-4 router with firmware 9.01.10 does not require... High Unreviewed
CVE-2008-1244 was published May 1, 2022
Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer... Moderate Unreviewed
CVE-2008-1238 was published May 1, 2022
The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products,... High Unreviewed
CVE-2008-1154 was published May 1, 2022
Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and 5.3 before Fix Pack 14... Moderate Unreviewed
CVE-2008-1130 was published May 1, 2022
OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 supports authentication with a cookie... Moderate Unreviewed
CVE-2008-1134 was published May 1, 2022
The management interface in Akamai Client (formerly Red Swoosh) 3322 and earlier allows remote... High Unreviewed
CVE-2008-1106 was published May 1, 2022
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x... High Unreviewed
CVE-2008-0960 was published May 1, 2022
EMV DiskXtender 6.20.060 has a hard-coded login and password, which allows remote attackers to... High Unreviewed
CVE-2008-0961 was published May 1, 2022
The SOAP interface to the eMBox module in Novell eDirectory 8.7.3.9 and earlier, and 8.8.x before... High Unreviewed
CVE-2008-0926 was published May 1, 2022
BEA WebLogic Server and WebLogic Express 6.1 through 10.0 allows remote attackers to bypass... Moderate Unreviewed
CVE-2008-0895 was published May 1, 2022
Unspecified vulnerability in the Header Image Module before 5.x-1.1 for Drupal allows remote... High Unreviewed
CVE-2008-0823 was published May 1, 2022
Unspecified vulnerability in the BIOS F.26 and earlier for the HP Compaq Notebook PC allows... High Unreviewed
CVE-2008-0706 was published May 1, 2022
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate... High Unreviewed
CVE-2008-0640 was published May 1, 2022
The ExpandCert function in Apache-SSL before apache_1.3.41+ssl_1.59 does not properly handle (1) ... High Unreviewed
CVE-2008-0555 was published May 1, 2022
Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x... High Unreviewed
CVE-2008-0536 was published May 1, 2022
ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do... Moderate Unreviewed
CVE-2008-0476 was published May 1, 2022
Web Wiz RTE_file_browser.asp in, as used in Web Wiz Rich Text Editor 4.0, Web Wiz Forums 9.07,... Moderate Unreviewed
CVE-2008-0466 was published May 1, 2022
HTTP File Server (HFS) before 2.2c allows remote attackers to obtain configuration and usage... Moderate Unreviewed
CVE-2008-0410 was published May 1, 2022
HTTP File Server (HFS) before 2.2c allows remote attackers to append arbitrary text to the log... Moderate Unreviewed
CVE-2008-0408 was published May 1, 2022
HTTP File Server (HFS) before 2.2c tags HTTP request log entries with the username sent during... Moderate Unreviewed
CVE-2008-0407 was published May 1, 2022
The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication... Moderate Unreviewed
CVE-2008-0403 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database