Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
Apache Tomcat Path Traversal Vulnerability Low
CVE-2007-5461 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
CMS Made Simple 1.1.3.1 does not check the permissions assigned to users who attempt uploads,... Low Unreviewed
CVE-2007-5442 was published May 1, 2022
Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5... Low Unreviewed
CVE-2007-5438 was published May 1, 2022
The 3Com 3CRWER100-75 router with 1.2.10ww software, when remote management is disabled but a web... Low Unreviewed
CVE-2007-5420 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0, when UTF-7 document... Low Unreviewed
CVE-2007-5414 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Layton HelpBox 3.7.1 allow remote... Low Unreviewed
CVE-2007-5403 was published May 1, 2022
Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote... Low Unreviewed
CVE-2007-5375 was published May 1, 2022
ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP... Low Unreviewed
CVE-2007-5373 was published May 1, 2022
Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 8, 9, and 10 allows... Low Unreviewed
CVE-2007-5319 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote... Low Unreviewed
CVE-2007-5293 was published May 1, 2022
Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update... Low Unreviewed
CVE-2007-5273 was published May 1, 2022
Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update... Low Unreviewed
CVE-2007-5274 was published May 1, 2022
Java Web Start in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier,... Low Unreviewed
CVE-2007-5238 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the subscription functionality in the Project issue... Low Unreviewed
CVE-2007-5228 was published May 1, 2022
guilt 0.27 allows local users to overwrite arbitrary files via a symlink attack on a guilt.log.... Low Unreviewed
CVE-2007-5207 was published May 1, 2022
hugin, as used on various operating systems including SUSE openSUSE 10.2 and 10.3, allows local... Low Unreviewed
CVE-2007-5200 was published May 1, 2022
F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus... Low Unreviewed
CVE-2007-5143 was published May 1, 2022
Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain... Low Unreviewed
CVE-2007-5086 was published May 1, 2022
Ghost Security Suite beta 1.110 does not properly validate certain parameters to System Service... Low Unreviewed
CVE-2007-5039 was published May 1, 2022
Ghost Security Suite alpha 1.200 does not properly validate certain parameters to System Service... Low Unreviewed
CVE-2007-5040 was published May 1, 2022
EMC VMware Server before 1.0.4 Build 56528 writes passwords in cleartext to unspecified log files... Low Unreviewed
CVE-2007-5024 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and... Low Unreviewed
CVE-2007-4977 was published May 1, 2022
RegMon 7.04 does not properly validate certain parameters to System Service Descriptor Table ... Low Unreviewed
CVE-2007-4972 was published May 1, 2022
HP System Management Homepage (SMH) for Windows, when used in conjunction with HP Version Control... Low Unreviewed
CVE-2007-4931 was published May 1, 2022
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a... Low Unreviewed
CVE-2007-4927 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database