Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
lib/prefs.tcl in Cecilia 2.0.5 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2008-1832 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in mindex.do in ManageEngine Firewall Analyzer 4.0.3... Low Unreviewed
CVE-2008-1775 was published May 1, 2022
Alkacon OpenCMS XSS via searchfilter parameter in system/workplace/admin/workplace/sessions.jsp Low
CVE-2008-1753 was published for org.opencms:opencms-core (Maven) May 1, 2022
Symantec Altiris Deployment Solution before 6.9.164 stores the Deployment Solution Agent (aka... Low Unreviewed
CVE-2008-1754 was published May 1, 2022
Rising Antivirus 2008 before 20.38.20 allows local users to cause a denial of service (system... Low Unreviewed
CVE-2008-1738 was published May 1, 2022
Interpretation conflict in PHP Toolkit before 1.0.1 on Gentoo Linux might allow local users to... Low Unreviewed
CVE-2008-1734 was published May 1, 2022
Directory traversal vulnerability in makepost.php in DaZPHPNews 0.1-1, when register_globals is... Low Unreviewed
CVE-2008-1696 was published May 1, 2022
CDS Invenio 0.92.1 and earlier allows remote authenticated users to delete email notification... Low Unreviewed
CVE-2008-1627 was published May 1, 2022
The sso_util program in Single Sign-On in Apple Mac OS X before 10.5.3 places passwords on the... Low Unreviewed
CVE-2008-1578 was published May 1, 2022
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files... Low Unreviewed
CVE-2008-1569 was published May 1, 2022
phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password, and the (3) Blowfish... Low Unreviewed
CVE-2008-1567 was published May 1, 2022
Alkacon OpenCMS XSS via searchfilter or listSearchFilter parameter Low
CVE-2008-1510 was published for org.opencms:opencms-core (Maven) May 1, 2022
The password reset feature in PunBB 1.2.16 and earlier uses predictable random numbers based on... Low Unreviewed
CVE-2008-1484 was published May 1, 2022
RaidSonic NAS-4220-B with 2.6.0-n(2007-10-11) firmware stores a partition encryption key in an... Low Unreviewed
CVE-2008-1431 was published May 1, 2022
The docert function in ssl-cert.eclass, when used by src_compile or src_install on Gentoo Linux,... Low Unreviewed
CVE-2008-1383 was published May 1, 2022
Absolute path traversal vulnerability in install/index.php in Drake CMS 0.4.11 RC8 allows remote... Low Unreviewed
CVE-2008-1371 was published May 1, 2022
Unspecified vulnerability in the Windows client API in Novell GroupWise 7 before SP3 and 6.5... Low Unreviewed
CVE-2008-1330 was published May 1, 2022
Alkacon Open CMS XSS via Logfile Viewer Settings function Low
CVE-2008-1300 was published for org.opencms:opencms-core (Maven) May 1, 2022
Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set... Low Unreviewed
CVE-2008-1294 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket... Low Unreviewed
CVE-2008-1176 was published May 1, 2022
rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which... Low Unreviewed
CVE-2008-1142 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to... Low Unreviewed
CVE-2008-1131 was published May 1, 2022
Alkacon OpenCMS XSS via file tree navigation in system/workplace/views/explorer/tree_files.jsp Low
CVE-2008-1045 was published for org.opencms:opencms-core (Maven) May 1, 2022
The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a... Low Unreviewed
CVE-2008-1033 was published May 1, 2022
WebCore, as used in Apple Safari before 3.1, does not properly mask the password field when... Low Unreviewed
CVE-2008-1005 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database