GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,208
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,521

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

552 advisories

Filter by severity

Sort by

Least recently updated

Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed

CVE-2025-22918 was published Feb 3, 2025

A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows... High Unreviewed

CVE-2021-23166 was published Apr 25, 2023

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process... High Unreviewed

CVE-2024-1488 was published Feb 15, 2024

A vulnerability in the NetExtender Windows client log export function allows unauthorized access... High Unreviewed

CVE-2025-23007 was published Jan 30, 2025

The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need... High Unreviewed

CVE-2023-1809 was published May 2, 2023

A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed

CVE-2025-24085 was published Jan 28, 2025

A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... High Unreviewed

CVE-2025-24176 was published Jan 28, 2025

Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed

CVE-2025-0543 was published Jan 25, 2025

Improper handling of case sensitivity in Jenkins OpenId Connect Authentication Plugin High

CVE-2025-24399 was published for org.jenkins-ci.plugins:oic-auth (Maven) Jan 22, 2025

In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs... High Unreviewed

CVE-2024-34730 was published Jan 22, 2025

In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed

CVE-2024-49736 was published Jan 22, 2025

In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to... High Unreviewed

CVE-2024-49737 was published Jan 22, 2025

In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed

CVE-2024-49742 was published Jan 22, 2025

Foxit PDF Reader (12.1.1.15289 and earlier) and Foxit PDF Editor (12.1.1.15289 and all previous... High Unreviewed

CVE-2023-33240 was published May 19, 2023

The Settings module has the file privilege escalation vulnerability.Successful exploitation of... High Unreviewed

CVE-2023-1693 was published May 20, 2023

The Lock Master app 2.2.4 for Android allows unauthorized apps to modify the values in its... High Unreviewed

CVE-2023-29733 was published May 30, 2023

Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed

CVE-2024-56447 was published Jan 8, 2025

Vaultwarden vulnerable to user impersonation High

CVE-2024-55225 was published for vaultwarden (Rust) Jan 9, 2025

In PRIMX ZED Enterprise up to 2024.3, technical files stored in local folders with common user... High Unreviewed

CVE-2024-46464 was published Jan 10, 2025

pgAdmin has Incorrect Default Permissions High

CVE-2023-1907 was published for pgadmin4 (pip) Jan 9, 2025

Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may... High Unreviewed

CVE-2023-23583 was published Nov 14, 2023

A vulnerability has been identified in the Ivanti Secure Access Windows client, which could allow... High Unreviewed

CVE-2023-35080 was published Nov 15, 2023

When a particular process flow is initiated, an attacker may be able to gain unauthorized... High Unreviewed

CVE-2023-41718 was published Nov 15, 2023

An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated... High Unreviewed

CVE-2021-27285 was published Jan 7, 2025

Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444... High Unreviewed

CVE-2023-28739 was published Jan 7, 2025

Previous 1 2 3 4 5 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

552 advisories