Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,270 advisories

Loading
The Thomson/Alcatel SpeedTouch 7G router, as used for the BT Home Hub 6.2.6.B and earlier, allows... High Unreviewed
CVE-2007-5383 was published May 1, 2022
Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1... High Unreviewed
CVE-2007-5152 was published May 1, 2022
NetSupport Manager Client before 10.20.0004 allows remote attackers to bypass the (1) basic and ... High Unreviewed
CVE-2007-5057 was published May 1, 2022
The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not correctly report password... High Unreviewed
CVE-2007-5008 was published May 1, 2022
Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and... High Unreviewed
CVE-2007-5006 was published May 1, 2022
The telnet service in Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module)... High Unreviewed
CVE-2007-4747 was published May 1, 2022
The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical... High Unreviewed
CVE-2007-4693 was published May 1, 2022
The login method in LoginModule implementations in Apache Geronimo 2.0 does not throw... High Unreviewed
CVE-2007-4548 was published May 1, 2022
Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the admin username, user id, and group... High Unreviewed
CVE-2007-4419 was published May 1, 2022
Fedora Commons before 2.2.1 does not properly handle certain authentication requests involving... High Unreviewed
CVE-2007-4364 was published May 1, 2022
Session fixation vulnerability in Mambo 4.6.2 CMS allows remote attackers to hijack web sessions... High Unreviewed
CVE-2007-4203 was published May 1, 2022
Session fixation vulnerability in Zen Cart 1.3.7 and earlier allows remote attackers to hijack... High Unreviewed
CVE-2007-3597 was published May 1, 2022
Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, allows attackers with physical... High Unreviewed
CVE-2007-3184 was published May 1, 2022
Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack... High Unreviewed
CVE-2007-3050 was published May 1, 2022
Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 and 5.0 SP4 and SP5 allows... High Unreviewed
CVE-2007-2719 was published May 1, 2022
Session fixation vulnerability in Plogger allows remote attackers to hijack web sessions by... High Unreviewed
CVE-2007-2277 was published May 1, 2022
Session fixation vulnerability in onelook courts on-line allows remote attackers to hijack web... High Unreviewed
CVE-2007-1953 was published May 1, 2022
Session fixation vulnerability in onelook onebyone CMS allows remote attackers to hijack web... High Unreviewed
CVE-2007-1952 was published May 1, 2022
Session fixation vulnerability in onelook obo Shop allows remote attackers to hijack web sessions... High Unreviewed
CVE-2007-1951 was published May 1, 2022
Session fixation vulnerability in WebBlizzard CMS allows remote attackers to hijack web sessions... High Unreviewed
CVE-2007-1949 was published May 1, 2022
Creative Guestbook 1.0 allows remote attackers to add an administrative account via a direct... High Unreviewed
CVE-2007-1480 was published May 1, 2022
webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a... High Unreviewed
CVE-2007-1160 was published May 1, 2022
The Cisco Unified IP Conference Station 7935 3.2(15) and earlier, and Station 7936 3.3(12) and... High Unreviewed
CVE-2007-1062 was published May 1, 2022
T-Com Speedport 500V routers with firmware 1.31 allow remote attackers to bypass authentication... High Unreviewed
CVE-2007-0435 was published May 1, 2022
Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93,... High Unreviewed
CVE-2006-6997 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database