Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

17 advisories

Loading
Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7... Critical Unreviewed
CVE-2017-8543 was published May 13, 2022
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1,... Critical Unreviewed
CVE-2017-8589 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... Critical Unreviewed
CVE-2018-4115 was published May 13, 2022
Rmote Code Execution (RCE) vulnerability in puppyCMS v5.1 due to insecure permissions, which... Critical Unreviewed
CVE-2020-18890 was published May 24, 2022
If a user had granted a permission to a webpage and saved that grant, any webpage running on the... Critical Unreviewed
CVE-2021-29971 was published May 24, 2022
Liferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders... Critical Unreviewed
CVE-2021-33990 was published Apr 16, 2023
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote... Critical Unreviewed
CVE-2023-47463 was published Nov 30, 2023
Insecure permissions in kruise v1.6.2 allows attackers to access sensitive data and escalate... Critical Unreviewed
CVE-2024-36532 was published Jun 22, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v... Critical Unreviewed
CVE-2024-41645 was published Dec 7, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v... Critical Unreviewed
CVE-2024-41646 was published Dec 7, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v... Critical Unreviewed
CVE-2024-41644 was published Dec 7, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v... Critical Unreviewed
CVE-2024-41649 was published Dec 7, 2024
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia... Critical Unreviewed
CVE-2024-54465 was published Dec 12, 2024
An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate... Critical Unreviewed
CVE-2024-55507 was published Jan 3, 2025
An Escalation of Privilege security vulnerability was found in SecureAge Security Suite software... Critical Unreviewed
CVE-2024-46622 was published Jan 6, 2025
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an... Critical Unreviewed
CVE-2024-54879 was published Jan 6, 2025
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an... Critical Unreviewed
CVE-2024-54880 was published Jan 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database