Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,395 advisories

Loading
iSCSI Enterprise Target (iscsitarget) 0.4.15 uses weak permissions for /etc/ietd.conf, which... Low Unreviewed
CVE-2007-5827 was published May 1, 2022
IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted... Low Unreviewed
CVE-2007-5819 was published May 1, 2022
The Globe7 soft phone client 7.3 uses weak cryptography (reversed sequence of binary values) for... Low Unreviewed
CVE-2007-5790 was published May 1, 2022
Liferea before 1.4.6 uses weak permissions (0644) for the feedlist.opml backup file, which allows... Low Unreviewed
CVE-2007-5751 was published May 1, 2022
Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote... Low Unreviewed
CVE-2007-5731 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows... Low Unreviewed
CVE-2007-5710 was published May 1, 2022
Incomplete blacklist vulnerability in the Certificate Authority (CA) in IBM Lotus Domino before 7... Low Unreviewed
CVE-2007-5701 was published May 1, 2022
make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command... Low Unreviewed
CVE-2007-5626 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Token module before 4.7.x-1.5, and 5.x... Low Unreviewed
CVE-2007-5621 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1... Low Unreviewed
CVE-2007-5564 was published May 1, 2022
Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command... Low Unreviewed
CVE-2007-5549 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject... Low Unreviewed
CVE-2007-5496 was published May 1, 2022
Microsoft Expression Media stores the catalog password in cleartext in the catalog IVC file,... Low Unreviewed
CVE-2007-5470 was published May 1, 2022
Apache Tomcat Path Traversal Vulnerability Low
CVE-2007-5461 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5... Low Unreviewed
CVE-2007-5438 was published May 1, 2022
CMS Made Simple 1.1.3.1 does not check the permissions assigned to users who attempt uploads,... Low Unreviewed
CVE-2007-5442 was published May 1, 2022
The 3Com 3CRWER100-75 router with 1.2.10ww software, when remote management is disabled but a web... Low Unreviewed
CVE-2007-5420 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0, when UTF-7 document... Low Unreviewed
CVE-2007-5414 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Layton HelpBox 3.7.1 allow remote... Low Unreviewed
CVE-2007-5403 was published May 1, 2022
ldapscripts 1.4 and 1.7 sends a password as a command line argument when calling some LDAP... Low Unreviewed
CVE-2007-5373 was published May 1, 2022
Interpretation conflict in the Sun Java Virtual Machine (JVM) allows user-assisted remote... Low Unreviewed
CVE-2007-5375 was published May 1, 2022
Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 8, 9, and 10 allows... Low Unreviewed
CVE-2007-5319 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote... Low Unreviewed
CVE-2007-5293 was published May 1, 2022
Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update... Low Unreviewed
CVE-2007-5273 was published May 1, 2022
Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update... Low Unreviewed
CVE-2007-5274 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database