Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network... High Unreviewed
CVE-2022-0997 was published May 18, 2022
Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of... High Unreviewed
CVE-2022-0486 was published May 18, 2022
Insecure permissions in the install directories and binaries of Dev-CPP v4.9.9.2 allows attackers... High Unreviewed
CVE-2022-28999 was published May 24, 2022
Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install... High Unreviewed
CVE-2022-29376 was published May 24, 2022
D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions. Critical Unreviewed
CVE-2022-28932 was published May 24, 2022
An Incorrect Default Permissions (CWE-276) vulnerability exists in SoMachine Basic, all versions,... Moderate Unreviewed
CVE-2018-7822 was published May 24, 2022
A vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby... High Unreviewed
CVE-2019-7588 was published May 24, 2022
WTF before 0.19.0 does not set the permissions of config.yml, which might make it easier for... Moderate Unreviewed
CVE-2019-15716 was published May 24, 2022
In Limesurvey before 3.17.14, admin users can run an integrity check without proper permissions. Moderate Unreviewed
CVE-2019-16183 was published May 24, 2022
In Limesurvey before 3.17.14, admin users can access the plugin manager without proper permissions. High Unreviewed
CVE-2019-16186 was published May 24, 2022
In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries... High Unreviewed
CVE-2019-16185 was published May 24, 2022
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated... High Unreviewed
CVE-2019-16106 was published May 24, 2022
Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use... High Unreviewed
CVE-2019-9679 was published May 24, 2022
The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18... High Unreviewed
CVE-2019-3689 was published May 24, 2022
The "CLink4Service" service is installed with Corsair Link 4.9.7.35 with insecure permissions by... High Unreviewed
CVE-2018-19592 was published May 24, 2022
If a Content Security Policy (CSP) directive is defined that uses a hash-based source that takes... Moderate Unreviewed
CVE-2019-11738 was published May 24, 2022
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel through 5.3.2... Low Unreviewed
CVE-2019-17052 was published May 24, 2022
atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel... Low Unreviewed
CVE-2019-17054 was published May 24, 2022
ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux... Low Unreviewed
CVE-2019-17053 was published May 24, 2022
llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through... Low Unreviewed
CVE-2019-17056 was published May 24, 2022
PC Protect Antivirus v4.14.31 installs by default to %PROGRAMFILES(X86)%\PCProtect with very weak... High Unreviewed
CVE-2019-16913 was published May 24, 2022
Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. Critical Unreviewed
CVE-2019-17124 was published May 24, 2022
The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates. High Unreviewed
CVE-2015-9476 was published May 24, 2022
The Simpolio theme 1.3.2 for WordPress has insufficient restrictions on option updates. High Unreviewed
CVE-2015-9474 was published May 24, 2022
The Pont theme 1.5 for WordPress has insufficient restrictions on option updates. High Unreviewed
CVE-2015-9475 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database