GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,659

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

333,287 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-site scripting (XSS) vulnerability in WebMail Pro in IceWarp Software Merak Mail Server 9.3... Moderate Unreviewed

CVE-2008-5734 was published May 17, 2022

SQL injection vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc... Moderate Unreviewed

CVE-2008-5954 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in MODx before 0.9.6.3 allow remote attackers... Moderate Unreviewed

CVE-2008-5942 was published May 17, 2022

Nukeviet 2.0 Beta allows remote attackers to bypass authentication and gain administrative access... High Unreviewed

CVE-2008-5945 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in apply.cgi on the Linksys WRT160N allows remote... Moderate Unreviewed

CVE-2008-6280 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Subtext 2.0 allows remote attackers to inject... Moderate Unreviewed

CVE-2008-6283 was published May 17, 2022

Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to... High Unreviewed

CVE-2008-6066 was published May 17, 2022

SQL injection vulnerability in index.php in EACOMM DO-CMS 3.0 allows remote attackers to execute... High Unreviewed

CVE-2008-6019 was published May 17, 2022

SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote attackers... High Unreviewed

CVE-2008-5977 was published May 17, 2022

Directory traversal vulnerability in Yerba SACphp 6.3 allows remote attackers to read arbitrary... Moderate Unreviewed

CVE-2008-5867 was published May 17, 2022

MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download... Moderate Unreviewed

CVE-2008-5687 was published May 17, 2022

The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender... High Unreviewed

CVE-2008-5617 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2-STABLE allows remote... Moderate Unreviewed

CVE-2008-6035 was published May 17, 2022

Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security... High Unreviewed

CVE-2008-5414 was published May 17, 2022

Multiple cross-site request forgery (CSRF) vulnerabilities in Comment Mail 5.x before 5.x-1.1, a... Moderate Unreviewed

CVE-2008-6384 was published May 17, 2022

Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which... Low Unreviewed

CVE-2008-6191 was published May 17, 2022

JBook stores sensitive information under the web root with insufficient access control, which... Moderate Unreviewed

CVE-2008-6375 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in profile_social.php in i-Net Solution Orkut Clone... Moderate Unreviewed

CVE-2008-5971 was published May 17, 2022

Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST... Moderate Unreviewed

CVE-2008-5986 was published May 17, 2022

internettoolbar/edit.php in YourPlace 1.0.2 and earlier does not end execution when an invalid... Moderate Unreviewed

CVE-2008-6774 was published May 17, 2022

Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and earlier... Moderate Unreviewed

CVE-2008-6661 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in GEDCOM_TO_MYSQL 2 allow remote attackers... Moderate Unreviewed

CVE-2008-6655 was published May 17, 2022

SQL injection vulnerability in asp/includes/contact.asp in QuickerSite 1.8.5 allows remote... High Unreviewed

CVE-2008-6678 was published May 17, 2022

Cross-site request forgery (CSRF) vulnerability in admin.php in AjaXplorer 2.3.3 and 2.3.4 allows... Moderate Unreviewed

CVE-2008-6639 was published May 17, 2022

Multiple SQL injection vulnerabilities in Avaya SIP Enablement Services (SES) in Avaya Avaya... Moderate Unreviewed

CVE-2008-6573 was published May 17, 2022

Previous 1…399400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

333,287 advisories