GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,340
Maven
5,000+
npm
5,000+
NuGet
1,033
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
348,368 advisories
Filter by severity
EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS...
Moderate
Unreviewed
CVE-2016-0907
was published
May 17, 2022
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an...
High
Unreviewed
CVE-2017-6259
was published
May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in Comment Mail 5.x before 5.x-1.1, a...
Moderate
Unreviewed
CVE-2008-6384
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers...
Moderate
Unreviewed
CVE-2008-6295
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Subtext 2.0 allows remote attackers to inject...
Moderate
Unreviewed
CVE-2008-6283
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in apply.cgi on the Linksys WRT160N allows remote...
Moderate
Unreviewed
CVE-2008-6280
was published
May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to...
High
Unreviewed
CVE-2008-6066
was published
May 17, 2022
Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security...
High
Unreviewed
CVE-2008-5414
was published
May 17, 2022
Multiple unspecified vulnerabilities in the ModSecurity (aka mod_security) module 2.5.0 through 2...
Moderate
Unreviewed
CVE-2008-5676
was published
May 17, 2022
Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST...
Moderate
Unreviewed
CVE-2008-5986
was published
May 17, 2022
SQL injection vulnerability in the Views module 6.x before 6.x-2.2 for Drupal allows remote...
High
Unreviewed
CVE-2008-6020
was published
May 17, 2022
Nukeviet 2.0 Beta allows remote attackers to bypass authentication and gain administrative access...
High
Unreviewed
CVE-2008-5945
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2-STABLE allows remote...
Moderate
Unreviewed
CVE-2008-6035
was published
May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in ComScripts TEAM Quick Classifieds 1.0 via...
High
Unreviewed
CVE-2008-6543
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote...
Moderate
Unreviewed
CVE-2008-6325
was published
May 17, 2022
The Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with...
Moderate
Unreviewed
CVE-2008-6707
was published
May 17, 2022
Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which...
Low
Unreviewed
CVE-2008-6191
was published
May 17, 2022
SQL injection vulnerability in the Sarkilar module for PHP-Nuke allows remote attackers to...
High
Unreviewed
CVE-2008-6779
was published
May 17, 2022
The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12...
Low
Unreviewed
CVE-2008-5825
was published
May 17, 2022
SQL injection vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote...
Moderate
Unreviewed
CVE-2008-5970
was published
May 17, 2022
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication...
High
Unreviewed
CVE-2008-5709
was published
May 17, 2022
Directory traversal vulnerability in Yerba SACphp 6.3 allows remote attackers to read arbitrary...
Moderate
Unreviewed
CVE-2008-5867
was published
May 17, 2022
Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2 on Windows Vista SP1, allows...
Moderate
Unreviewed
CVE-2008-5821
was published
May 17, 2022
xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain...
High
Unreviewed
CVE-2008-5716
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in MODx before 0.9.6.3 allow remote attackers...
Moderate
Unreviewed
CVE-2008-5942
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API