Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,423 advisories

Loading
backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username,... Low Unreviewed
CVE-2007-4656 was published May 1, 2022
The get_system_info command in Ignite-UX C.7.0 through C.7.3, and DynRootDisk (DRD) A.1.0.16.417... Low Unreviewed
CVE-2007-4590 was published May 1, 2022
The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture ... Low Unreviewed
CVE-2007-4571 was published May 1, 2022
Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local... Low Unreviewed
CVE-2007-4570 was published May 1, 2022
The Client Login Extension (CLE) in Novell Identity Manager before 3.5.1 20070730 stores the... Low Unreviewed
CVE-2007-4526 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Ripe Website Manager 0.8.9 and earlier... Low Unreviewed
CVE-2007-4523 was published May 1, 2022
lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2007-4462 was published May 1, 2022
Unspecified vulnerability in the login page redirection logic in the Cache' Server Page (CSP)... Low Unreviewed
CVE-2007-4427 was published May 1, 2022
Direct static code injection vulnerability in admincp/user_help.php in Headstart Solutions... Low Unreviewed
CVE-2007-4413 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Headstart Solutions DeskPRO 3.0.2 allow... Low Unreviewed
CVE-2007-4412 was published May 1, 2022
Unspecified vulnerability in a "core clean" cron job created by the findutils-locate package on... Low Unreviewed
CVE-2007-4394 was published May 1, 2022
IBM Lotus Notes 5.x through 7.0.2 allows user-assisted remote authenticated administrators to... Low Unreviewed
CVE-2007-4309 was published May 1, 2022
The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid... Low Unreviewed
CVE-2007-4308 was published May 1, 2022
The Skinny channel driver (chan_skinny) in Asterisk Open Source before 1.4.10, AsteriskNOW before... Low Unreviewed
CVE-2007-4280 was published May 1, 2022
Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3... Low Unreviewed
CVE-2007-4271 was published May 1, 2022
Multiple vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local... Low Unreviewed
CVE-2007-4272 was published May 1, 2022
Hitachi Groupmax Collaboration - Schedule, as used in Groupmax Collaboration Portal 07-32 through... Low Unreviewed
CVE-2007-4204 was published May 1, 2022
Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport... Low Unreviewed
CVE-2007-4179 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.2.1 allow remote authenticated... Low Unreviewed
CVE-2007-4153 was published May 1, 2022
CoolKey 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on temporary... Low Unreviewed
CVE-2007-4129 was published May 1, 2022
Unspecified vulnerability in the dynamic tracing framework (DTrace) on Sun Solaris 10 before... Low Unreviewed
CVE-2007-4126 was published May 1, 2022
Unspecified vulnerability in Advanced Webhost Billing System (AWBS) before 2.6.0 allows remote... Low Unreviewed
CVE-2007-4113 was published May 1, 2022
gforge 3.1 and 4.5.14 allows local users to truncate arbitrary files via a symlink attack on... Low Unreviewed
CVE-2007-3921 was published May 1, 2022
Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child... Low Unreviewed
CVE-2007-3848 was published May 1, 2022
Red Hat Enterprise Linux (RHEL) 5 ships the rpm for the Advanced Intrusion Detection Environment ... Low Unreviewed
CVE-2007-3849 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database