GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,814

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

525 advisories

Filter by severity

Sort by

Least recently updated

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate... High Unreviewed

CVE-2023-27091 was published Apr 4, 2023

When the installation directory does not have sufficiently restrictive file permissions, an... High Unreviewed

CVE-2022-43701 was published Jul 28, 2023

When the directory containing the installer does not have sufficiently restrictive file... High Unreviewed

CVE-2022-43702 was published Jul 28, 2023

NGINX Management Suite default file permissions are set such that an authenticated attacker may... High Unreviewed

CVE-2023-28724 was published Jul 6, 2023

Incorrect directory permissions for the shared NI RabbitMQ service may allow a local... High Unreviewed

CVE-2024-1156 was published Feb 20, 2024

Incorrect permissions in the installation directories for shared SystemLink Elixir based services... High Unreviewed

CVE-2024-1155 was published Feb 20, 2024

Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability... High Unreviewed

CVE-2023-31360 was published Feb 11, 2025

An issue found in DUALSPACE Lock Master v.2.2.4 allows a local attacker to cause a denial of... High Unreviewed

CVE-2023-27647 was published Apr 14, 2023

An issue was discovered in TigerGraph Enterprise Free Edition 3.x. It creates an authentication... High Unreviewed

CVE-2023-22951 was published Apr 13, 2023

In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed

CVE-2024-49742 was published Jan 22, 2025

An issue was discovered in the controller unit of the OpenRISC mor1kx processor. The read/write... High Unreviewed

CVE-2021-41614 was published Apr 18, 2023

Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed

CVE-2024-11468 was published Feb 5, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-24107 was published Jan 28, 2025

Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed

CVE-2025-22918 was published Feb 3, 2025

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows... High Unreviewed

CVE-2021-23166 was published Apr 25, 2023

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process... High Unreviewed

CVE-2024-1488 was published Feb 15, 2024

A vulnerability in the NetExtender Windows client log export function allows unauthorized access... High Unreviewed

CVE-2025-23007 was published Jan 30, 2025

The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need... High Unreviewed

CVE-2023-1809 was published May 2, 2023

A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed

CVE-2025-24085 was published Jan 28, 2025

A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... High Unreviewed

CVE-2025-24176 was published Jan 28, 2025

Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed

CVE-2025-0543 was published Jan 25, 2025

In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs... High Unreviewed

CVE-2024-34730 was published Jan 22, 2025

In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed

CVE-2024-49736 was published Jan 22, 2025

In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to... High Unreviewed

CVE-2024-49737 was published Jan 22, 2025

Foxit PDF Reader (12.1.1.15289 and earlier) and Foxit PDF Editor (12.1.1.15289 and all previous... High Unreviewed

CVE-2023-33240 was published May 19, 2023

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

525 advisories