GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,668
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
425 advisories
Filter by severity
In Vtiger 7.x before 7.2.0, the My Preferences saving functionality allows a user without...
High
Unreviewed
CVE-2019-19202
was published
May 24, 2022
Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may...
High
Unreviewed
CVE-2019-11155
was published
May 24, 2022
Harbor API has a Broken Access Control vulnerability. The vulnerability allows project...
High
Unreviewed
CVE-2019-16919
was published
May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the...
High
Unreviewed
CVE-2019-17043
was published
May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the...
High
Unreviewed
CVE-2019-17044
was published
May 24, 2022
Ubisoft Uplay 92.0.0.6280 has Insecure Permissions.
High
Unreviewed
CVE-2019-14737
was published
May 24, 2022
In startActivityMayWait of ActivityStarter.java, there is a possible incorrect Activity launch...
High
Unreviewed
CVE-2019-2173
was published
May 24, 2022
In the default privileges of NFC, there is a possible local bypass of user interaction...
High
Unreviewed
CVE-2019-2114
was published
May 24, 2022
Nix through 2.3 allows local users to gain access to an arbitrary user's account because the...
High
Unreviewed
CVE-2019-17365
was published
May 24, 2022
The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates.
High
Unreviewed
CVE-2015-9476
was published
May 24, 2022
The Pont theme 1.5 for WordPress has insufficient restrictions on option updates.
High
Unreviewed
CVE-2015-9475
was published
May 24, 2022
The Vernissage theme 1.2.8 for WordPress has insufficient restrictions on option updates.
High
Unreviewed
CVE-2015-9477
was published
May 24, 2022
The Simpolio theme 1.3.2 for WordPress has insufficient restrictions on option updates.
High
Unreviewed
CVE-2015-9474
was published
May 24, 2022
PC Protect Antivirus v4.14.31 installs by default to %PROGRAMFILES(X86)%\PCProtect with very weak...
High
Unreviewed
CVE-2019-16913
was published
May 24, 2022
The "CLink4Service" service is installed with Corsair Link 4.9.7.35 with insecure permissions by...
High
Unreviewed
CVE-2018-19592
was published
May 24, 2022
Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use...
High
Unreviewed
CVE-2019-9679
was published
May 24, 2022
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated...
High
Unreviewed
CVE-2019-16106
was published
May 24, 2022
In Limesurvey before 3.17.14, admin users can access the plugin manager without proper permissions.
High
Unreviewed
CVE-2019-16186
was published
May 24, 2022
In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries...
High
Unreviewed
CVE-2019-16185
was published
May 24, 2022
A vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby...
High
Unreviewed
CVE-2019-7588
was published
May 24, 2022
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows...
High
Unreviewed
CVE-2014-7303
was published
May 17, 2022
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows...
High
Unreviewed
CVE-2014-7302
was published
May 17, 2022
Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions.
High
Unreviewed
CVE-2023-42261
was published
Sep 22, 2023
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to...
High
Unreviewed
CVE-2024-0259
was published
Mar 28, 2024
Incorrect default permissions in the installer for the Intel(R) NUC M15 Laptop Kit Integrated...
High
Unreviewed
CVE-2021-33088
was published
Nov 18, 2021
ProTip!
Advisories are also available from the
GraphQL API