Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
Launch Services in Apple Mac OS X 10.5 through 10.5.1 allows an uninstalled application to be... Low Unreviewed
CVE-2008-0038 was published May 1, 2022
The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not... Low Unreviewed
CVE-2008-0009 was published May 1, 2022
The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24... Low Unreviewed
CVE-2008-0010 was published May 1, 2022
VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access... Low Unreviewed
CVE-2008-0001 was published May 1, 2022
Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended... Low Unreviewed
CVE-2007-6744 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5... Low Unreviewed
CVE-2007-6704 was published May 1, 2022
The WebSphere MQ XA 5.3 before FP13 and 6.0.x before 6.0.2.1 client for Windows, when running in... Low Unreviewed
CVE-2007-6705 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar 1.1.6 allow remote attackers... Low Unreviewed
CVE-2007-6696 was published May 1, 2022
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the... Low Unreviewed
CVE-2007-6680 was published May 1, 2022
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary... Low Unreviewed
CVE-2007-6595 was published May 1, 2022
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate... Low Unreviewed
CVE-2007-6505 was published May 1, 2022
The WiMAX dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a... Low Unreviewed
CVE-2007-6441 was published May 1, 2022
Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass... Low Unreviewed
CVE-2007-6434 was published May 1, 2022
The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password... Low Unreviewed
CVE-2007-6418 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache... Low Unreviewed
CVE-2007-6421 was published May 1, 2022
The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication... Low Unreviewed
CVE-2007-6385 was published May 1, 2022
The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to... Low Unreviewed
CVE-2007-6389 was published May 1, 2022
IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD)... Low Unreviewed
CVE-2007-6363 was published May 1, 2022
Geert Moernaut LSrunasE 1.0 and Supercrypt 1.0 use the RC4 stream cipher without constructing a... Low Unreviewed
CVE-2007-6340 was published May 1, 2022
MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4 does not update the... Low Unreviewed
CVE-2007-6303 was published May 1, 2022
Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and... Low Unreviewed
CVE-2007-6267 was published May 1, 2022
etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for... Low Unreviewed
CVE-2007-6249 was published May 1, 2022
zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might... Low Unreviewed
CVE-2007-6210 was published May 1, 2022
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for... Low Unreviewed
CVE-2007-6207 was published May 1, 2022
sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary... Low Unreviewed
CVE-2007-6208 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database