Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,374 advisories

Loading
Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache... Low Unreviewed
CVE-2007-6421 was published May 1, 2022
IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD)... Low Unreviewed
CVE-2007-6363 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin... Low Unreviewed
CVE-2007-6100 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows... Low Unreviewed
CVE-2007-5977 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in IBM Tivoli Service Desk 6.2 allows remote... Low Unreviewed
CVE-2007-5949 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in BosDev BosMarket Business Directory System... Low Unreviewed
CVE-2007-5833 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows... Low Unreviewed
CVE-2007-5710 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Token module before 4.7.x-1.5, and 5.x... Low Unreviewed
CVE-2007-5621 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1... Low Unreviewed
CVE-2007-5564 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject... Low Unreviewed
CVE-2007-5496 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0, when UTF-7 document... Low Unreviewed
CVE-2007-5414 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Layton HelpBox 3.7.1 allow remote... Low Unreviewed
CVE-2007-5403 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote... Low Unreviewed
CVE-2007-5293 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the subscription functionality in the Project issue... Low Unreviewed
CVE-2007-5228 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and... Low Unreviewed
CVE-2007-4977 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in account_settings.php in TorrentTrader 1.07... Low Unreviewed
CVE-2007-4831 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in admin/adminusers.php in Claroline before 1.8.6 allows... Low Unreviewed
CVE-2007-4741 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote... Low Unreviewed
CVE-2007-4717 was published May 1, 2022
Apache Tomcat vulnerable to Cross-site Scripting Low
CVE-2007-2450 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
sunSUNQ MarkLee131
** DISPUTED ** Cross-site scripting (XSS) vulnerability in an mt import in wp-admin/admin.php in... Low Unreviewed
CVE-2007-1732 was published May 1, 2022
Apache Tomcat XSS In Accept-Language Headers Low
CVE-2007-1358 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in the Admin Control Panel ... Low Unreviewed
CVE-2007-0830 was published May 1, 2022
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments... Low Unreviewed
CVE-2007-0537 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in memcp.php in XMB U2U Instant Messenger allows remote... Low Unreviewed
CVE-2007-0519 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Oracle Reports Web Cartridge (RWCGI60) in the... Low Unreviewed
CVE-2007-0275 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database