GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
102
GitHub Actions
54
Go
4,340
Maven
5,000+
npm
5,000+
NuGet
1,033
pip
5,000+
Pub
13
RubyGems
1,122
Rust
1,498
Swift
61
Unreviewed advisories
All unreviewed
5,000+
348,368 advisories
Filter by severity
Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in...
High
Unreviewed
CVE-2008-5404
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Kent Web Mart 1.61 and earlier allows remote...
Moderate
Unreviewed
CVE-2008-5224
was published
May 17, 2022
Stack-based buffer overflow in the DtbClsLogin function in Yosemite Backup 8.7 allows remote...
High
Unreviewed
CVE-2008-5177
was published
May 17, 2022
The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows...
Moderate
Unreviewed
CVE-2008-5256
was published
May 17, 2022
Unspecified vulnerability in Microsoft Office Communications Server (OCS), Office Communicator,...
Moderate
Unreviewed
CVE-2008-5179
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in TWiki before 4.2.4 allows remote attackers to inject...
Moderate
Unreviewed
CVE-2008-5304
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in moziloCMS 1.10.2 and earlier allow remote...
Moderate
Unreviewed
CVE-2008-6127
was published
May 17, 2022
Multiple SQL injection vulnerabilities in BatmanPorTaL allow remote attackers to execute...
High
Unreviewed
CVE-2008-6640
was published
May 17, 2022
SQL injection vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote...
High
Unreviewed
CVE-2008-6134
was published
May 17, 2022
SQL injection vulnerability in asp/includes/contact.asp in QuickerSite 1.8.5 allows remote...
High
Unreviewed
CVE-2008-6678
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in index.php in Zen Software Zen Cart 2008 allows remote...
Moderate
Unreviewed
CVE-2008-6616
was published
May 17, 2022
AVG Anti-Virus for Linux 7.5.51, and possibly earlier, allows remote attackers to cause a denial...
Moderate
Unreviewed
CVE-2008-6662
was published
May 17, 2022
Multiple directory traversal vulnerabilities in moziloCMS 1.10.2 and earlier allow remote...
Moderate
Unreviewed
CVE-2008-6126
was published
May 17, 2022
Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and earlier...
Moderate
Unreviewed
CVE-2008-6661
was published
May 17, 2022
Unspecified vulnerability in Download Center Lite before 2.1 has unknown impact and attack...
High
Unreviewed
CVE-2008-6602
was published
May 17, 2022
Gallery 1.5.x before 1.5.10 and 1.6 before 1.6-RC3, when register_globals is enabled, allows...
Moderate
Unreviewed
CVE-2008-5296
was published
May 17, 2022
Tor before 0.2.0.32 does not properly process the ClientDNSRejectInternalAddresses configuration...
High
Unreviewed
CVE-2008-5398
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Workplace Content Management (WCM) 6.0G and 6.1...
Low
Unreviewed
CVE-2008-5228
was published
May 17, 2022
Tor before 0.2.0.32 does not properly process the (1) User and (2) Group configuration options,...
High
Unreviewed
CVE-2008-5397
was published
May 17, 2022
Todd Woolums ASP News Management 2.2 allows remote attackers to obtain news items via a direct...
Moderate
Unreviewed
CVE-2008-5274
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows...
Moderate
Unreviewed
CVE-2008-6135
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in GEDCOM_TO_MYSQL 2 allow remote attackers...
Moderate
Unreviewed
CVE-2008-6655
was published
May 17, 2022
Unspecified vulnerability in the "session limitation technique" in the FTP service on Nortel...
High
Unreviewed
CVE-2008-6576
was published
May 17, 2022
Cross-site request forgery (CSRF) vulnerability in admin.php in AjaXplorer 2.3.3 and 2.3.4 allows...
Moderate
Unreviewed
CVE-2008-6639
was published
May 17, 2022
Multiple SQL injection vulnerabilities in Avaya SIP Enablement Services (SES) in Avaya Avaya...
Moderate
Unreviewed
CVE-2008-6573
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API