Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,412
Erlang
28
GitHub Actions
16
Go
1,650
Maven
4,914
npm
3,437
NuGet
594
pip
2,682
Pub
10
RubyGems
822
Rust
760
Swift
34
Unreviewed advisories
All unreviewed
5,000+

12 advisories

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a... Moderate Unreviewed
CVE-2007-3304 was published May 3, 2022
The Xen hypervisor block backend driver for Linux kernel 2.6.18, when running on a 64-bit host... Moderate Unreviewed
CVE-2007-5498 was published May 1, 2022
The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a... Moderate Unreviewed
CVE-2007-3847 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the Host Manager Servlet for Apache Tomcat 6.0.0 to 6... Moderate Unreviewed
CVE-2007-3386 was published May 1, 2022
cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a... Moderate Unreviewed
CVE-2007-1863 was published May 1, 2022
The default SSL cipher configuration in Apache Tomcat 4.1.28 through 4.1.31, 5.0.0 through 5.0.30... Low Unreviewed
CVE-2007-1858 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example... Moderate Unreviewed
CVE-2007-1355 was published May 1, 2022
Unspecified vulnerability in the FTP server implementation in HP Jetdirect firmware x.20.nn... High Unreviewed
CVE-2007-0358 was published May 1, 2022
wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input... High Unreviewed
CVE-2007-0233 was published May 1, 2022
Cross-site scripting in Apache Tomcat Moderate
CVE-2006-7196 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP... Moderate Unreviewed
CVE-2006-5752 was published May 1, 2022
Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;)... Moderate Unreviewed
CVE-2006-3835 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API