GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,693
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
22 advisories
Filter by severity
The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2...
Low
Unreviewed
CVE-2008-5503
was published
May 14, 2022
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in...
High
Unreviewed
CVE-2015-0002
was published
May 14, 2022
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19,...
Moderate
Unreviewed
CVE-2008-5512
was published
May 14, 2022
Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and...
Moderate
Unreviewed
CVE-2008-5513
was published
May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5501
was published
May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5502
was published
May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5508
was published
May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5506
was published
May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x...
High
Unreviewed
CVE-2008-5500
was published
May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5507
was published
May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and...
Moderate
Unreviewed
CVE-2008-5511
was published
May 14, 2022
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3, Windows...
High
Unreviewed
CVE-2012-0173
was published
May 4, 2022
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3, Windows...
High
Unreviewed
CVE-2012-0002
was published
May 4, 2022
The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2)...
Moderate
Unreviewed
CVE-2008-1447
was published
May 3, 2022
Apache Tomcat Path Traversal Vulnerability
Moderate
CVE-2008-2370
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Apache Tomcat Cross-site scripting (XSS) vulnerability
Moderate
CVE-2008-1947
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
May 1, 2022
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 2.0 allows...
Moderate
Unreviewed
CVE-2008-1888
was published
May 1, 2022
Apache Tomcat Cross-site scripting (XSS) vulnerability
Moderate
CVE-2008-1232
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Apache Tomcat Sensitive Information Disclosure
Moderate
CVE-2008-0002
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM...
High
Unreviewed
CVE-2008-0003
was published
May 1, 2022
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net...
High
Unreviewed
CVE-2006-6106
was published
May 1, 2022
The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user...
Moderate
Unreviewed
CVE-2006-4814
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API