GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,574
Composer 5,678
Erlang 49
GitHub Actions 50
Go 3,630
Maven 6,443
npm 5,931
NuGet 928
pip 4,850
Pub 13
RubyGems 1,045
Rust 1,301
Swift 53

Unreviewed advisories

All unreviewed 299,990

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

329,564 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability classified as critical has been found in SourceCodester Prison Management System... High Unreviewed

CVE-2022-2018 was published Jun 10, 2022

Potential speculative code store bypass in all supported CPU products, in conjunction with... Moderate Unreviewed

CVE-2021-26313 was published May 24, 2022

A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a... High Unreviewed

CVE-2021-20019 was published May 24, 2022

A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This... High Unreviewed

CVE-2020-7870 was published May 24, 2022

SQL injection vulnerability in the Sarkilar module for PHP-Nuke allows remote attackers to... High Unreviewed

CVE-2008-6779 was published May 17, 2022

Open redirect vulnerability in wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote... Moderate Unreviewed

CVE-2008-6762 was published May 17, 2022

internettoolbar/edit.php in YourPlace 1.0.2 and earlier does not end execution when an invalid... Moderate Unreviewed

CVE-2008-6774 was published May 17, 2022

connection.php in FlashChat 5.0.8 allows remote attackers to bypass the role filter mechanism and... High Unreviewed

CVE-2008-6799 was published May 17, 2022

wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to upgrade the... High Unreviewed

CVE-2008-6767 was published May 17, 2022

Multiple PHP remote file inclusion vulnerabilities in ComScripts TEAM Quick Classifieds 1.0 via... High Unreviewed

CVE-2008-6543 was published May 17, 2022

Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related content when an input... Moderate Unreviewed

CVE-2008-6533 was published May 17, 2022

Multiple cross-site request forgery (CSRF) vulnerabilities in Comment Mail 5.x before 5.x-1.1, a... Moderate Unreviewed

CVE-2008-6384 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in Subtext 2.0 allows remote attackers to inject... Moderate Unreviewed

CVE-2008-6283 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in apply.cgi on the Linksys WRT160N allows remote... Moderate Unreviewed

CVE-2008-6280 was published May 17, 2022

JBook stores sensitive information under the web root with insufficient access control, which... Moderate Unreviewed

CVE-2008-6375 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote... Moderate Unreviewed

CVE-2008-6325 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x... Moderate Unreviewed

CVE-2008-6275 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers... Moderate Unreviewed

CVE-2008-6295 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in seeurl.php in Xavier Flahaut URLStreet 1.0 allows... Moderate Unreviewed

CVE-2008-6205 was published May 17, 2022

Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which... Low Unreviewed

CVE-2008-6191 was published May 17, 2022

Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to... High Unreviewed

CVE-2008-6066 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2-STABLE allows remote... Moderate Unreviewed

CVE-2008-6035 was published May 17, 2022

SQL injection vulnerability in index.php in EACOMM DO-CMS 3.0 allows remote attackers to execute... High Unreviewed

CVE-2008-6019 was published May 17, 2022

SQL injection vulnerability in the Views module 6.x before 6.x-2.2 for Drupal allows remote... High Unreviewed

CVE-2008-6020 was published May 17, 2022

Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST... Moderate Unreviewed

CVE-2008-5986 was published May 17, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

329,564 advisories