Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,395
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

109,805 advisories

Loading
Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, Compatibility Pack, and Office 2004 and... High Unreviewed
CVE-2008-0116 was published May 1, 2022
Multiple heap-based buffer overflows in emlsr.dll in the EML reader in Autonomy (formerly Verity)... High Unreviewed
CVE-2007-5399 was published May 1, 2022
cgi-bin/setup_virtualserver.exe on the Belkin F5D7230-4 router with firmware 9.01.10 allows... High Unreviewed
CVE-2008-1245 was published May 1, 2022
The ZyXEL P-660HW series router maintains authentication state by IP address, which allows remote... High Unreviewed
CVE-2008-1255 was published May 1, 2022
cp06_wifi_m_nocifr.cgi in the admin panel on the Alice Gate 2 Plus Wi-Fi router does not verify... High Unreviewed
CVE-2008-1269 was published May 1, 2022
The Linksys WRT54G router allows remote attackers to cause a denial of service (device restart)... High Unreviewed
CVE-2008-1265 was published May 1, 2022
The ZyXEL P-660HW series router has "admin" as its default password, which allows remote... High Unreviewed
CVE-2008-1256 was published May 1, 2022
The administration panel on the Airspan WiMax ProST 4.1 antenna with 6.5.38.0 software does not... High Unreviewed
CVE-2008-1262 was published May 1, 2022
b_banner.stm (aka the login page) on the Deutsche Telekom Speedport W500 DSL router allows remote... High Unreviewed
CVE-2008-1252 was published May 1, 2022
The Siemens SpeedStream 6520 router allows remote attackers to cause a denial of service (web... High Unreviewed
CVE-2008-1267 was published May 1, 2022
The web interface on the Linksys WRT54g router with firmware 1.00.9 does not require credentials... High Unreviewed
CVE-2008-1247 was published May 1, 2022
The Zyxel P-2602HW-D1A router with 3.40(AJZ.1) firmware maintains authentication state by IP... High Unreviewed
CVE-2008-1259 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface on the central... High Unreviewed
CVE-2008-1250 was published May 1, 2022
Multiple buffer overflows in the useEncodingDecl function in Java Web Start in Sun JDK and JRE 6... High Unreviewed
CVE-2008-1188 was published May 1, 2022
The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE (SynCE-dccm... High Unreviewed
CVE-2008-1136 was published May 1, 2022
Airspan Base Station Distribution Unit (BSDU) has "topsecret" as its password for the root... High Unreviewed
CVE-2008-1542 was published May 1, 2022
Multiple stack-based buffer overflows in the PVATLCalendar.PVCalendar.1 ActiveX control in... High Unreviewed
CVE-2007-6016 was published May 1, 2022
Multiple SQL injection vulnerabilities in wppa.php in the WP Photo Album (WPPA) before 1.1 plugin... High Unreviewed
CVE-2008-0939 was published May 1, 2022
SQL injection vulnerability in includes/functions/banners-external.php in phpBP 2 RC3 (2.204) FIX... High Unreviewed
CVE-2008-1408 was published May 1, 2022
Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote... High Unreviewed
CVE-2008-0949 was published May 1, 2022
gcc 4.3.x does not generate a cld instruction while compiling functions used for string... High Unreviewed
CVE-2008-1367 was published May 1, 2022
Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2008-0674 was published May 1, 2022
Gallarific does not require authentication for (1) users.php and (2) index.php, which allows... High Unreviewed
CVE-2008-1327 was published May 1, 2022
Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib before 1.1.10.1... High Unreviewed
CVE-2008-1161 was published May 1, 2022
The FTP server on the Linksys WRT54G 7 router with 7.00.1 firmware does not verify authentication... High Unreviewed
CVE-2008-1268 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database