GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,278
Composer 4,356
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,297
npm 3,782
NuGet 683
pip 3,463
Pub 12
RubyGems 893
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,109

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

609 advisories

Filter by severity

Sort by

Least recently updated

Improper access control vulnerability in ELECOM LD-PS/U1 allows remote attackers to change the... High Unreviewed

CVE-2021-20643 was published May 24, 2022

In archiveStoredConversation of MmsService.java, there is a possible way to archive message... High Unreviewed

CVE-2021-0539 was published May 24, 2022

Talk 4 in Coral before 4.12.1 allows remote attackers to discover e-mail addresses and other... High Unreviewed

CVE-2021-35970 was published May 24, 2022

In SapphireIMS 5.0, it is possible to create local administrator on any client with credentials... High Unreviewed

CVE-2020-25564 was published May 24, 2022

An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a... High Unreviewed

CVE-2022-30700 was published May 28, 2022

A flaw was discovered in Continuous Delivery for Puppet Enterprise (CD4PE) that results in a user... High Unreviewed

CVE-2021-27024 was published May 24, 2022

AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged... High Unreviewed

CVE-2021-25877 was published May 24, 2022

A permissions issue existed in DiskArbitration. This was addressed with additional ownership... High Unreviewed

CVE-2021-1784 was published May 24, 2022

Local privilege vulnerability in Yandex Browser for Windows prior to 22.3.3.801 allows a local,... High Unreviewed

CVE-2022-28226 was published Jun 16, 2022

In universal forwarder versions before 9.0, management services are available remotely by default... High Unreviewed

CVE-2022-32155 was published Jun 16, 2022

An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. When installing,... High Unreviewed

CVE-2022-34006 was published Jun 20, 2022

A vulnerability has been identified in Xpedition Designer (All versions < VX.2.11). The affected... High Unreviewed

CVE-2022-31465 was published Jun 15, 2022

Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to... High Unreviewed

CVE-2019-9166 was published May 13, 2022

Use of improper permission in InputManagerService prior to SMR Jul-2022 Release 1 allows... High Unreviewed

CVE-2022-33695 was published Jul 13, 2022

In Car Settings app, the NotificationAccessConfirmationActivity is exported. In... High Unreviewed

CVE-2022-20234 was published Jul 14, 2022

Mini-Tmall v1.0 is vulnerable to Insecure Permissions via tomcat-embed-jasper. High Unreviewed

CVE-2022-30929 was published Jul 7, 2022

This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed

CVE-2022-34891 was published Jul 19, 2022

An issue has been discovered in Novastar-VNNOX-iCare Novaicare 7.16.0 that gives attacker... High Unreviewed

CVE-2021-38289 was published Jul 13, 2022

In addOrUpdateNetwork of WifiServiceImpl.java, there is a possible way for a guest user to... High Unreviewed

CVE-2022-20398 was published Sep 14, 2022

CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both... High Unreviewed

CVE-2022-37190 was published Sep 14, 2022

It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) uses the "... High Unreviewed

CVE-2021-42855 was published Mar 11, 2022

CBRN-Analysis before 22 has weak file permissions under Public Profile, leading to disclosure of... High Unreviewed

CVE-2022-45193 was published Nov 12, 2022

An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open... High Unreviewed

CVE-2014-10402 was published May 17, 2022

A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been... High Unreviewed

CVE-2019-8342 was published May 24, 2022

A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS... High Unreviewed

CVE-2019-12577 was published May 24, 2022

Previous 1 2 3 4 5 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

609 advisories