Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,034
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,667 advisories

Loading
Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is... Low Unreviewed
CVE-2008-4593 was published May 2, 2022
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly ... Low Unreviewed
CVE-2008-4579 was published May 2, 2022
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7,... Low Unreviewed
CVE-2008-4549 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1... Low Unreviewed
CVE-2008-4542 was published May 2, 2022
Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion... Low Unreviewed
CVE-2008-4540 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for... Low Unreviewed
CVE-2008-4530 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0... Low Unreviewed
CVE-2008-4456 was published May 2, 2022
XRunSabre in sabre (aka xsabre) 0.2.4b relies on the ability to create /tmp/sabre.log, which... Low Unreviewed
CVE-2008-4407 was published May 2, 2022
Apache Tomcat information disclosure vulnerability Low
CVE-2008-4308 was published for org.apache.tomcat:tomcat (Maven) May 2, 2022
VMware VirtualCenter 2.5 before Update 3 build 119838 on Windows displays a user's password in... Low Unreviewed
CVE-2008-4278 was published May 2, 2022
Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not... Low Unreviewed
CVE-2008-4233 was published May 2, 2022
The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1... Low Unreviewed
CVE-2008-4230 was published May 2, 2022
Race condition in the Passcode Lock feature in Apple iPhone OS 2.0 through 2.1 and iPhone OS for... Low Unreviewed
CVE-2008-4229 was published May 2, 2022
The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1... Low Unreviewed
CVE-2008-4228 was published May 2, 2022
cron.php in MemHT Portal 3.9.0 and earlier allows remote attackers to obtain sensitive... Low Unreviewed
CVE-2008-4164 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Talk module 5.x before 5.x-1.3 and 6.x before 6.x... Low Unreviewed
CVE-2008-4152 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows... Low Unreviewed
CVE-2008-4139 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote... Low Unreviewed
CVE-2008-4083 was published May 2, 2022
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3... Low Unreviewed
CVE-2008-4011 was published May 2, 2022
Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle... Low Unreviewed
CVE-2008-4004 was published May 2, 2022
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD... Low Unreviewed
CVE-2008-4002 was published May 2, 2022
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Low Unreviewed
CVE-2008-3993 was published May 2, 2022
Unspecified vulnerability in the Oracle Discoverer Administrator component in Oracle Application... Low Unreviewed
CVE-2008-3986 was published May 2, 2022
Unspecified vulnerability in the Oracle Discoverer Desktop component in Oracle Application Server... Low Unreviewed
CVE-2008-3987 was published May 2, 2022
Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local... Low Unreviewed
CVE-2008-3973 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database