GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,241

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,033 advisories

Filter by severity

Sort by

Least recently updated

Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6... Moderate Unreviewed

CVE-2008-0150 was published May 1, 2022

DBMail before 2.2.9, when using authldap with an LDAP server that supports anonymous login such... Moderate Unreviewed

CVE-2007-6714 was published May 1, 2022

Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x... Moderate Unreviewed

CVE-2007-6430 was published May 1, 2022

Flat PHP Board 1.2 and earlier allows remote attackers to bypass authentication and obtain... Moderate Unreviewed

CVE-2007-6398 was published May 1, 2022

Unspecified vulnerability in Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-01... Moderate Unreviewed

CVE-2007-6145 was published May 1, 2022

gnump3d 2.9final does not apply password protection to its plugins, which might allow remote... Moderate Unreviewed

CVE-2007-6130 was published May 1, 2022

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash,... Moderate Unreviewed

CVE-2007-6013 was published May 1, 2022

details.php in BtiTracker before 1.4.5, when torrent viewing is disabled for guests, allows... Moderate Unreviewed

CVE-2007-5987 was published May 1, 2022

dirsys/modules/auth.php in JBC Explorer 7.20 RC1 and earlier does not require authentication,... Moderate Unreviewed

CVE-2007-5913 was published May 1, 2022

Mail in Apple Mac OS X 10.4.11 and 10.5.1, when an SMTP account has been set up using Account... Moderate Unreviewed

CVE-2007-5855 was published May 1, 2022

The (1) Net::ftptls, (2) Net::telnets, (3) Net::imap, (4) Net::pop, and (5) Net::smtp libraries... Moderate Unreviewed

CVE-2007-5770 was published May 1, 2022

The Gentoo ebuild of MLDonkey before 2.9.0-r3 has a p2p user account with an empty default... Moderate Unreviewed

CVE-2007-5714 was published May 1, 2022

cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when... Moderate Unreviewed

CVE-2007-5374 was published May 1, 2022

The connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1... Moderate Unreviewed

CVE-2007-5162 was published May 1, 2022

report.cgi in Google Urchin allows remote attackers to bypass authentication and obtain sensitive... Moderate Unreviewed

CVE-2007-5113 was published May 1, 2022

Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows... Moderate Unreviewed

CVE-2007-5085 was published May 1, 2022

The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X... Moderate Unreviewed

CVE-2007-4692 was published May 1, 2022

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 does not properly validate... Moderate Unreviewed

CVE-2007-4680 was published May 1, 2022

Cisco IOS 12.2E, 12.2F, and 12.2S places a "no login" line into the VTY configuration when an... Moderate Unreviewed

CVE-2007-4632 was published May 1, 2022

Session fixation vulnerability in Ampache before 3.3.3.5 allows remote attackers to hijack web... Moderate Unreviewed

CVE-2007-4438 was published May 1, 2022

file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) before 4.6.3 allows... Moderate Unreviewed

CVE-2007-4043 was published May 1, 2022

Session fixation vulnerability in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier... Moderate Unreviewed

CVE-2007-3988 was published May 1, 2022

Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes... Moderate Unreviewed

CVE-2007-3754 was published May 1, 2022

Ingate Firewall and SIParator before 4.5.2 allow remote attackers to bypass SIP authentication... Moderate Unreviewed

CVE-2007-3177 was published May 1, 2022

Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an... Moderate Unreviewed

CVE-2007-2555 was published May 1, 2022

Previous 1 2 … 37 38 39 40 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,033 advisories