Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
738
pip
3,959
Pub
12
RubyGems
946
Rust
1,027
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business... High Unreviewed
CVE-2016-3943 was published May 13, 2022
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering... High Unreviewed
CVE-2015-7378 was published May 13, 2022
Withdrawn Advisory: Mobile Security Framework (MobSF) Vulnerable to Insecure Permissions High
CVE-2023-42261 was published for mobsf (pip) Sep 22, 2023 withdrawn
A Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed package gerbera allows... High Unreviewed
CVE-2025-23386 was published Apr 10, 2025
AWS CDK CodePipeline: trusted entities are too broad Low
GHSA-5pq3-h73f-66hr was published for aws-cdk-lib (npm) Mar 24, 2025
The system has a vulnerability that may cause dynamic hiding and restoring of app icons... High Unreviewed
CVE-2022-46761 was published Jan 6, 2023
snowflake-connector-python vulnerable to insecure cache files permissions Moderate
CVE-2025-24795 was published for snowflake-connector-python (pip) Jan 29, 2025
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to... High Unreviewed
CVE-2024-0259 was published Mar 28, 2024
Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to... High Unreviewed
CVE-2025-29801 was published Apr 8, 2025
Incorrect default permissions issue exists in Unifier and Unifier Cast Version.5.0 or later, and... Moderate Unreviewed
CVE-2024-23847 was published May 31, 2024
A 2-Step Verification problem in Axigen 10.3.3.52 allows an attacker to access a mailbox by... Critical Unreviewed
CVE-2023-23566 was published Jan 13, 2023
An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to... High Unreviewed
CVE-2025-29570 was published Apr 3, 2025
The Simple Membership plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11088 was published Apr 5, 2025
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate... High Unreviewed
CVE-2025-29504 was published Apr 3, 2025
An issue was discovered in OpenText Content Suite Platform 22.1 (16.2.19.1803). The endpoint... High Unreviewed
CVE-2022-45924 was published Jan 18, 2023
Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to... High Unreviewed
CVE-2006-5014 was published May 1, 2022
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with... High Unreviewed
CVE-2022-48199 was published Jan 26, 2023
Incorrect default permissions on the AMD Ryzen(TM) AI installation folder could allow an attacker... High Unreviewed
CVE-2025-0014 was published Apr 2, 2025
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-30465 was published Apr 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-24267 was published Apr 1, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... High Unreviewed
CVE-2025-24277 was published Apr 1, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Critical Unreviewed
CVE-2025-24172 was published Apr 1, 2025
An issue in ASKEY router RTF3505VW-N1 BR_SV_g000_R3505VMN1001_s32_7 allows attackers to escalate... High Unreviewed
CVE-2022-47040 was published Jan 26, 2023
In AutomaticZenRule of AutomaticZenRule.java, there is a possible failure to persist permissions... High Unreviewed
CVE-2022-20456 was published Jan 26, 2023
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed
CVE-2025-24207 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database