Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,462
Erlang
33
GitHub Actions
22
Go
2,159
Maven
5,000+
npm
3,820
NuGet
696
pip
3,502
Pub
12
RubyGems
903
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

461 advisories

Loading
The WP OAuth Server (OAuth Authentication) WordPress plugin before 4.2.5 has a flawed CSRF and... Moderate Unreviewed
CVE-2022-4148 was published Mar 20, 2023
Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to... Moderate Unreviewed
CVE-2023-27084 was published Mar 16, 2023
Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users... Moderate Unreviewed
CVE-2022-37708 was published Feb 1, 2023
A permissions flaw was found in redis, which sets weak permissions on certain files and... Moderate Unreviewed
CVE-2016-2121 was published May 13, 2022
In BIG-IP versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8.1, 14.1.x... Moderate Unreviewed
CVE-2023-22326 was published Feb 1, 2023
It was discovered that sos-collector does not properly set the default permissions of newly... Moderate Unreviewed
CVE-2018-14650 was published May 13, 2022
A vulnerability was found in openshift/template-service-broker-operator in all 4.x.x versions... Moderate Unreviewed
CVE-2020-1705 was published May 24, 2022
An issue was discovered in Ricoh (including Savin and Lanier) Windows printer drivers prior to... Moderate Unreviewed
CVE-2019-19363 was published May 24, 2022
A vulnerability was found in all openshift/mediawiki 4.x.x versions prior to 4.3.0, where an... Moderate Unreviewed
CVE-2020-1709 was published May 24, 2022
A flaw was found in Red Hat Satellite, which allows a privileged attacker to read OMAPI secrets... Moderate Unreviewed
CVE-2020-14335 was published May 24, 2022
It has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1... Moderate Unreviewed
CVE-2020-1706 was published May 24, 2022
The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp... Moderate Unreviewed
CVE-2008-0884 was published May 1, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of TP... Moderate Unreviewed
CVE-2020-10883 was published May 24, 2022
An issue was discovered in the web application in Cherwell Service Management (CSM) 10.2.3. The... Moderate Unreviewed
CVE-2022-26157 was published Mar 1, 2022
An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write... Moderate Unreviewed
CVE-2022-0247 was published Feb 26, 2022
The Job Composer app in Ohio Supercomputer Center Open OnDemand before 1.7.19 and 1.8.x before 1... Moderate Unreviewed
CVE-2020-27958 was published Feb 27, 2022
Incorrect Permission Assignment for Critical Resource in CRI-O Moderate
CVE-2022-0532 was published for github.com/cri-o/cri-o (Go) Feb 11, 2022
Some sensitive cookies in SAP Disclosure Management, version 10.1, are missing HttpOnly flag,... Moderate Unreviewed
CVE-2020-6267 was published May 24, 2022
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions... Moderate Unreviewed
CVE-2020-24394 was published May 24, 2022
A vulnerability was found in all openshift/postgresql-apb 4.x.x versions prior to 4.3.0, where an... Moderate Unreviewed
CVE-2020-1707 was published May 24, 2022
An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after... Moderate Unreviewed
CVE-2018-6536 was published May 13, 2022
An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is setuid and allows an... Moderate Unreviewed
CVE-2018-7169 was published May 13, 2022
A permissions issue existed in the handling of the Apple ID. This issue was addressed with... Moderate Unreviewed
CVE-2018-4324 was published May 13, 2022
On F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.2, or 11.2.1-11.6.3.1, Enterprise Manager 3.1.1, BIG-IQ... Moderate Unreviewed
CVE-2018-5516 was published May 13, 2022
On F5 BIG-IP 13.0.0-13.0.1, 12.1.0-12.1.3.3, 11.6.0-11.6.3.1, or 11.5.1-11.5.6, Enterprise... Moderate Unreviewed
CVE-2018-5540 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database