Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,693
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

22 advisories

The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2... Low Unreviewed
CVE-2008-5503 was published May 14, 2022
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in... High Unreviewed
CVE-2015-0002 was published May 14, 2022
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19,... Moderate Unreviewed
CVE-2008-5512 was published May 14, 2022
Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and... Moderate Unreviewed
CVE-2008-5513 was published May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5501 was published May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5502 was published May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5508 was published May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5506 was published May 14, 2022
The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x... High Unreviewed
CVE-2008-5500 was published May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5507 was published May 14, 2022
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and... Moderate Unreviewed
CVE-2008-5511 was published May 14, 2022
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3, Windows... High Unreviewed
CVE-2012-0173 was published May 4, 2022
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3, Windows... High Unreviewed
CVE-2012-0002 was published May 4, 2022
The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2)... Moderate Unreviewed
CVE-2008-1447 was published May 3, 2022
Apache Tomcat Path Traversal Vulnerability Moderate
CVE-2008-2370 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat Cross-site scripting (XSS) vulnerability Moderate
CVE-2008-1947 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) May 1, 2022
sunSUNQ
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 2.0 allows... Moderate Unreviewed
CVE-2008-1888 was published May 1, 2022
Apache Tomcat Cross-site scripting (XSS) vulnerability Moderate
CVE-2008-1232 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat Sensitive Information Disclosure Moderate
CVE-2008-0002 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM... High Unreviewed
CVE-2008-0003 was published May 1, 2022
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net... High Unreviewed
CVE-2006-6106 was published May 1, 2022
The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user... Moderate Unreviewed
CVE-2006-4814 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API