Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,616
Maven
5,000+
npm
4,255
NuGet
760
pip
4,040
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,676 advisories

Loading
Cross-site scripting (XSS) vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows... Low Unreviewed
CVE-2008-4139 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote... Low Unreviewed
CVE-2008-4083 was published May 2, 2022
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3... Low Unreviewed
CVE-2008-4011 was published May 2, 2022
Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle... Low Unreviewed
CVE-2008-4004 was published May 2, 2022
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD... Low Unreviewed
CVE-2008-4002 was published May 2, 2022
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business... Low Unreviewed
CVE-2008-3993 was published May 2, 2022
Unspecified vulnerability in the Oracle Discoverer Administrator component in Oracle Application... Low Unreviewed
CVE-2008-3986 was published May 2, 2022
Unspecified vulnerability in the Oracle Discoverer Desktop component in Oracle Application Server... Low Unreviewed
CVE-2008-3987 was published May 2, 2022
Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local... Low Unreviewed
CVE-2008-3973 was published May 2, 2022
The from_format function in ssmtp.c in ssmtp 2.61 and 2.62, in certain configurations, uses... Low Unreviewed
CVE-2008-3962 was published May 2, 2022
Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers... Low Unreviewed
CVE-2008-3934 was published May 2, 2022
Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service... Low Unreviewed
CVE-2008-3933 was published May 2, 2022
Intel firmware PE94510M.86A.0050.2007.0710.1559 stores pre-boot authentication passwords in the... Low Unreviewed
CVE-2008-3900 was published May 2, 2022
Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot... Low Unreviewed
CVE-2008-3901 was published May 2, 2022
HP firmware 68DTT F.0D stores pre-boot authentication passwords in the BIOS Keyboard buffer and... Low Unreviewed
CVE-2008-3902 was published May 2, 2022
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8;... Low Unreviewed
CVE-2008-3903 was published May 2, 2022
TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not... Low Unreviewed
CVE-2008-3899 was published May 2, 2022
Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication passwords in the BIOS Keyboard... Low Unreviewed
CVE-2008-3898 was published May 2, 2022
DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords in the BIOS Keyboard buffer... Low Unreviewed
CVE-2008-3897 was published May 2, 2022
Grub Legacy 0.97 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer... Low Unreviewed
CVE-2008-3896 was published May 2, 2022
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the... Low Unreviewed
CVE-2008-3893 was published May 2, 2022
LILO 22.6.1 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and... Low Unreviewed
CVE-2008-3895 was published May 2, 2022
IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication passwords in the BIOS Keyboard... Low Unreviewed
CVE-2008-3894 was published May 2, 2022
Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux... Low Unreviewed
CVE-2008-3889 was published May 2, 2022
Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass... Low Unreviewed
CVE-2008-3876 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database