GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,011
Composer 5,216
Erlang 40
GitHub Actions 40
Go 2,966
Maven 6,253
npm 4,612
NuGet 788
pip 4,314
Pub 12
RubyGems 984
Rust 1,121
Swift 49

Unreviewed advisories

All unreviewed 289,374

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,050 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack... High Unreviewed

CVE-2007-3050 was published May 1, 2022

Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 and 5.0 SP4 and SP5 allows... High Unreviewed

CVE-2007-2719 was published May 1, 2022

Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an... Moderate Unreviewed

CVE-2007-2555 was published May 1, 2022

Session fixation vulnerability in Simple Machines Forum (SMF) 1.1.2 and earlier allows remote... Moderate Unreviewed

CVE-2007-2546 was published May 1, 2022

Session fixation vulnerability in Plogger allows remote attackers to hijack web sessions by... High Unreviewed

CVE-2007-2277 was published May 1, 2022

OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers... Moderate Unreviewed

CVE-2007-2243 was published May 1, 2022

Session fixation vulnerability in eXV2 CMS 2.0.4.3 and earlier allows remote attackers to hijack... Moderate Unreviewed

CVE-2007-1966 was published May 1, 2022

Session fixation vulnerability in onelook courts on-line allows remote attackers to hijack web... High Unreviewed

CVE-2007-1953 was published May 1, 2022

Session fixation vulnerability in onelook onebyone CMS allows remote attackers to hijack web... High Unreviewed

CVE-2007-1952 was published May 1, 2022

Session fixation vulnerability in onelook obo Shop allows remote attackers to hijack web sessions... High Unreviewed

CVE-2007-1951 was published May 1, 2022

Session fixation vulnerability in WebBlizzard CMS allows remote attackers to hijack web sessions... High Unreviewed

CVE-2007-1949 was published May 1, 2022

XScreenSaver 4.10, when using a remote directory service for credentials, does not properly... Moderate Unreviewed

CVE-2007-1859 was published May 1, 2022

Creative Guestbook 1.0 allows remote attackers to add an administrative account via a direct... High Unreviewed

CVE-2007-1480 was published May 1, 2022

IBM DB2 UDB 8.2 before Fixpak 7 (aka fixpack 14), and DB2 9 before Fix Pack 2, on UNIX allows the... Moderate Unreviewed

CVE-2007-1228 was published May 1, 2022

webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a... High Unreviewed

CVE-2007-1160 was published May 1, 2022

The Cisco Unified IP Conference Station 7935 3.2(15) and earlier, and Station 7936 3.3(12) and... High Unreviewed

CVE-2007-1062 was published May 1, 2022

T-Com Speedport 500V routers with firmware 1.31 allow remote attackers to bypass authentication... High Unreviewed

CVE-2007-0435 was published May 1, 2022

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93,... High Unreviewed

CVE-2006-6997 was published May 1, 2022

logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via... High Unreviewed

CVE-2006-6783 was published May 1, 2022

Multiple unspecified vulnerabilities in the template files in Soumu Workflow for Groupmax 01-00... Moderate Unreviewed

CVE-2006-6705 was published May 1, 2022

Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to... High Unreviewed

CVE-2006-5268 was published May 1, 2022

SQL-Ledger 2.4.4 through 2.6.17 authenticates users by verifying that the value of the sql-ledger... High Unreviewed

CVE-2006-4244 was published May 1, 2022

Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web... High Unreviewed

CVE-2006-3583 was published May 1, 2022

newsadmin.asp in Katy Whitton NewsCMSLite allows remote attackers to bypass authentication and... High Unreviewed

CVE-2006-2636 was published May 1, 2022

Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication... Moderate Unreviewed

CVE-2006-2380 was published May 1, 2022

Previous 1…147…162 Next

Previous 1 2 … 145 146 147 148 149 … 161 162 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,050 advisories