Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,433 advisories

Loading
Unspecified vulnerability in the Resource Manager component in Oracle Database 10.1.0.5, 10.2.0.4... Low Unreviewed
CVE-2008-2603 was published May 1, 2022
Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+,... Low Unreviewed
CVE-2008-2587 was published May 1, 2022
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2... Low Unreviewed
CVE-2008-2588 was published May 1, 2022
Unspecified vulnerability in the Instance Management component in Oracle Database 10.1.0.5 and... Low Unreviewed
CVE-2008-2590 was published May 1, 2022
The sarab.sh script in SaraB before 0.2.4 places the dar program's encryption key on the command... Low Unreviewed
CVE-2008-2517 was published May 1, 2022
Red Hat Certificate System 7.2 stores passwords in cleartext in the UserDirEnrollment log, the RA... Low Unreviewed
CVE-2008-2368 was published May 1, 2022
Red Hat Certificate System 7.2 uses world-readable permissions for password.conf and unspecified... Low Unreviewed
CVE-2008-2367 was published May 1, 2022
Directory Services in Apple Mac OS X 10.5 through 10.5.4, when Active Directory is used, allows... Low Unreviewed
CVE-2008-2329 was published May 1, 2022
Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access... Low Unreviewed
CVE-2008-2288 was published May 1, 2022
The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and other versions before 2.6.25... Low Unreviewed
CVE-2008-2148 was published May 1, 2022
Unspecified versions of Microsoft Outlook Web Access (OWA) use the Cache-Control: no-cache HTTP... Low Unreviewed
CVE-2008-2143 was published May 1, 2022
Microsoft Internet Explorer 7 can save encrypted pages in the cache even when the... Low Unreviewed
CVE-2008-2159 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform... Low Unreviewed
CVE-2008-2140 was published May 1, 2022
email_in.pl in Bugzilla 2.23.4, 3.0.x before 3.0.4, and 3.1.x before 3.1.4 allows remote... Low Unreviewed
CVE-2008-2105 was published May 1, 2022
The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and... Low Unreviewed
CVE-2008-2101 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in EditeurScripts EsContacts 1.0 allow remote... Low Unreviewed
CVE-2008-2037 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the Ubercart 5.x before 5.x-1.0 rc3 module for Drupal... Low Unreviewed
CVE-2008-1978 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Cezanne 6.5.1 and 7 allow remote attackers... Low Unreviewed
CVE-2008-1969 was published May 1, 2022
muCommander before 0.8.2 stores credentials.xml with insecure permissions, which allows local... Low Unreviewed
CVE-2008-1970 was published May 1, 2022
The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly... Low Unreviewed
CVE-2008-1952 was published May 1, 2022
Buffer overflow in the backend of XenSource Xen Para Virtualized Frame Buffer (PVFB) 3.0 through... Low Unreviewed
CVE-2008-1943 was published May 1, 2022
QEMU 0.9.0 does not properly handle changes to removable media, which allows guest OS users to... Low Unreviewed
CVE-2008-1945 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the profile update feature in Akiva WebBoard 8.0... Low Unreviewed
CVE-2008-1941 was published May 1, 2022
Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows... Low Unreviewed
CVE-2008-1924 was published May 1, 2022
tss 0.8.1 allows local users to read arbitrary files via the -a parameter, which is processed... Low Unreviewed
CVE-2008-1877 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database