Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,142 advisories

Loading
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved... Moderate Unreviewed
CVE-2024-21615 was published Apr 12, 2024
RuoYi has insecure permissions Moderate
CVE-2024-57438 was published for com.ruoyi:ruoyi (Maven) Jan 29, 2025
pgAdmin has Incorrect Default Permissions High
CVE-2023-1907 was published for pgadmin4 (pip) Jan 9, 2025
In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed
CVE-2024-49742 was published Jan 22, 2025
An issue was discovered in the controller unit of the OpenRISC mor1kx processor. The read/write... High Unreviewed
CVE-2021-41614 was published Apr 18, 2023
Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed
CVE-2024-11468 was published Feb 5, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-24107 was published Jan 28, 2025
In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances... Moderate Unreviewed
CVE-2024-29967 was published Apr 19, 2024
Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes... Moderate Unreviewed
CVE-2024-29962 was published Apr 19, 2024
Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed
CVE-2025-22918 was published Feb 3, 2025
Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to... Moderate Unreviewed
CVE-2024-40514 was published Jan 17, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed
CVE-2025-24140 was published Jan 28, 2025
Insecure permissions in the XNetSocketClient component of XINJE XDPPro.exe v3.2.2 to v3.7.17c... Moderate Unreviewed
CVE-2024-52783 was published Jan 15, 2025
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows... High Unreviewed
CVE-2021-23166 was published Apr 25, 2023
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process... High Unreviewed
CVE-2024-1488 was published Feb 15, 2024
A vulnerability in the NetExtender Windows client log export function allows unauthorized access... High Unreviewed
CVE-2025-23007 was published Jan 30, 2025
The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need... High Unreviewed
CVE-2023-1809 was published May 2, 2023
snowflake-connector-python vulnerable to insecure cache files permissions Moderate
CVE-2025-24795 was published for snowflake-connector-python (pip) Jan 29, 2025
Snowflake.Data has weak temporary files permissions Moderate
CVE-2025-24788 was published for Snowflake.Data (NuGet) Jan 29, 2025
Rancher Webhook is misconfigured during upgrade process Critical
CVE-2023-22651 was published for github.com/rancher/rancher (Go) Apr 24, 2023
pjbgf
Snowflake JDBC uses insecure temporary credential cache file permissions Moderate
CVE-2025-24790 was published for net.snowflake:snowflake-jdbc (Maven) Jan 29, 2025
A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed
CVE-2025-24085 was published Jan 28, 2025
Weak default folder permissions Moderate Unreviewed
CVE-2024-55930 was published Jan 23, 2025
CMSimple 5.16 allows the user to edit log.php file via print page. Critical Unreviewed
CVE-2024-57548 was published Jan 28, 2025
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2025-24826 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database