Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,019
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,426 advisories

Loading
gforge 3.1 and 4.5.14 allows local users to truncate arbitrary files via a symlink attack on... Low Unreviewed
CVE-2007-3921 was published May 1, 2022
Red Hat Enterprise Linux (RHEL) 5 ships the rpm for the Advanced Intrusion Detection Environment ... Low Unreviewed
CVE-2007-3849 was published May 1, 2022
Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child... Low Unreviewed
CVE-2007-3848 was published May 1, 2022
The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map... Low Unreviewed
CVE-2007-3850 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in takeprofedit.php in TBDev.NET DR 11-10-05-BETA-SF1... Low Unreviewed
CVE-2007-3838 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in alert.php in ISS Proventia Network IPS GX5108 1.3 and... Low Unreviewed
CVE-2007-3830 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Ex Libris MetaLib 3.13 and 4 allows remote attackers... Low Unreviewed
CVE-2007-3835 was published May 1, 2022
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme... Low Unreviewed
CVE-2007-3820 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Webcit before 7.11 allow remote attackers... Low Unreviewed
CVE-2007-3822 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the LoginToboggan module 5.x-1.x-dev before 20070712... Low Unreviewed
CVE-2007-3818 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in SiteScape Forum before 7.3 allow remote... Low Unreviewed
CVE-2007-3807 was published May 1, 2022
MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges... Low Unreviewed
CVE-2007-3782 was published May 1, 2022
The process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that... Low Unreviewed
CVE-2007-3719 was published May 1, 2022
The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept... Low Unreviewed
CVE-2007-3723 was published May 1, 2022
The ULE process scheduler in the FreeBSD kernel gives preference to "interactive" processes that... Low Unreviewed
CVE-2007-3721 was published May 1, 2022
The process scheduler in the Linux kernel 2.4 performs scheduling based on CPU billing gathered... Low Unreviewed
CVE-2007-3720 was published May 1, 2022
The process scheduler in the Microsoft Windows XP kernel does not make use of the process... Low Unreviewed
CVE-2007-3724 was published May 1, 2022
The 4BSD process scheduler in the FreeBSD kernel performs scheduling based on CPU billing... Low Unreviewed
CVE-2007-3722 was published May 1, 2022
The _sanitize_globals function in CodeIgniter 1.5.3 before 20070628 allows remote attackers to... Low Unreviewed
CVE-2007-3706 was published May 1, 2022
Sun Java System Access Manager (formerly Java System Identity Server) before 20070710, when the... Low Unreviewed
CVE-2007-3700 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in DotClear 1.2.6 allow remote... Low Unreviewed
CVE-2007-3688 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1... Low Unreviewed
CVE-2007-3685 was published May 1, 2022
Unspecified vulnerability in DomainPOP in Alt-N Technologies MDaemon before 9.61 allows remote... Low Unreviewed
CVE-2007-3622 was published May 1, 2022
vtiger CRM before 5.0.3, when a migrated build is used, allows remote authenticated users to read... Low Unreviewed
CVE-2007-3601 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in AdventNet ManageEngine OpManager 6 and 7... Low Unreviewed
CVE-2007-3594 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database