Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,652
Erlang
34
GitHub Actions
26
Go
2,257
Maven
5,000+
npm
3,909
NuGet
704
pip
3,680
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,123 advisories

Loading
Foundation in Apple Mac OS X 10.4.11 might allow context-dependent attackers to execute arbitrary... Moderate Unreviewed
CVE-2008-0054 was published May 1, 2022
The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24... Low Unreviewed
CVE-2008-0010 was published May 1, 2022
The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not... Low Unreviewed
CVE-2008-0009 was published May 1, 2022
The pa_drop_root function in PulseAudio 0.9.8, and a certain 0.9.9 build, does not check return... High Unreviewed
CVE-2008-0008 was published May 1, 2022
telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the... Moderate Unreviewed
CVE-2007-6746 was published May 1, 2022
Improper Input Validation in pyftpdlib High
CVE-2007-6739 was published for pyftpdlib (pip) May 1, 2022
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file... High Unreviewed
CVE-2007-6689 was published May 1, 2022
The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2007-6684 was published May 1, 2022
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass... Moderate Unreviewed
CVE-2007-6596 was published May 1, 2022
QK SMTP Server 3 allows remote attackers to cause a denial of service (daemon crash) via a long ... High Unreviewed
CVE-2007-6573 was published May 1, 2022
TotalPlayer 3.0 allows user-assisted remote attackers to cause a denial of service (application... Moderate Unreviewed
CVE-2007-6558 was published May 1, 2022
Multiple unspecified vulnerabilities in Microsoft Office Publisher allow user-assisted remote... Moderate Unreviewed
CVE-2007-6534 was published May 1, 2022
uploadimg.php in the Automatic Image Upload with Thumbnails (imgUpload) module 1.3.2 for PunBB... Moderate Unreviewed
CVE-2007-6527 was published May 1, 2022
Unspecified vulnerability in Appian Enterprise Business Process Management (BPM) Suite 5.6 SP1... High Unreviewed
CVE-2007-6509 was published May 1, 2022
The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in... High Unreviewed
CVE-2007-6493 was published May 1, 2022
Multiple PHP remote file inclusion vulnerabilities in Falcon Series One CMS 1.4.3 allow remote... Moderate Unreviewed
CVE-2007-6488 was published May 1, 2022
Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote attackers to obtain login access via... High Unreviewed
CVE-2007-6494 was published May 1, 2022
The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in... High Unreviewed
CVE-2007-6492 was published May 1, 2022
Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a... Moderate Unreviewed
CVE-2007-6437 was published May 1, 2022
The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before... High Unreviewed
CVE-2007-6433 was published May 1, 2022
Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a... High Unreviewed
CVE-2007-6372 was published May 1, 2022
Nokia N95 cell phone with RM-159 12.0.013 firmware allows remote attackers to cause a denial of... High Unreviewed
CVE-2007-6371 was published May 1, 2022
Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2007-6326 was published May 1, 2022
PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1... Moderate Unreviewed
CVE-2007-6325 was published May 1, 2022
BarracudaDrive Web Server before 3.8 allows remote attackers to read the source code for web... Moderate Unreviewed
CVE-2007-6314 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database