GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,570
Composer 4,838
Erlang 36
GitHub Actions 33
Go 2,460
Maven 5,866
npm 4,082
NuGet 723
pip 3,873
Pub 12
RubyGems 943
Rust 1,010
Swift 39

Unreviewed advisories

All unreviewed 266,656

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,338 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with... Low Unreviewed

CVE-2009-0141 was published May 2, 2022

nss-ldapd before 0.6.8 uses world-readable permissions for the /etc/nss-ldapd.conf file, which... Moderate Unreviewed

CVE-2009-1073 was published May 2, 2022

mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2,... Low Unreviewed

CVE-2009-2948 was published May 2, 2022

The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of... Moderate Unreviewed

CVE-2009-3289 was published May 2, 2022

TrustPort Antivirus before 2.8.0.2266 and PC Security before 2.0.0.1291 use weak permissions ... Moderate Unreviewed

CVE-2009-3482 was published May 2, 2022

Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure... Moderate Unreviewed

CVE-2009-3489 was published May 2, 2022

common/snapshots.py in Back In Time (aka backintime) 0.9.26 changes certain permissions to 0777... Low Unreviewed

CVE-2009-3611 was published May 2, 2022

Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at... Moderate Unreviewed

CVE-2009-3897 was published May 2, 2022

The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has... Moderate Unreviewed

CVE-2009-3939 was published May 2, 2022

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified ... Moderate Unreviewed

CVE-2010-0488 was published May 2, 2022

Incorrect Permission Assignment for Critical Resource in ShopXO Critical

CVE-2022-28056 was published for shopxo/shopxo (Composer) May 3, 2022

On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... High Unreviewed

CVE-2022-29263 was published May 6, 2022

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed

CVE-2022-26340 was published May 6, 2022

An issue was discovered in the Sametime chat feature in the Notes 11.0 - 11.0.1 FP4 clients. An... Moderate Unreviewed

CVE-2021-27760 was published May 7, 2022

IBM Robotic Process Automation 21.0.1 could allow a register user on the system to physically... Moderate Unreviewed

CVE-2022-22319 was published May 10, 2022

A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software... Moderate Unreviewed

CVE-2019-1600 was published May 11, 2022

An incorrect permission assignment for critical resource vulnerability [CWE-732] in FortiClient... High Unreviewed

CVE-2021-44167 was published May 12, 2022

An information disclosure vulnerability exists in the web interface session cookie functionality... Moderate Unreviewed

CVE-2022-25172 was published May 13, 2022

An exploitable local privilege escalation vulnerability exists in the privileged helper tool of... High Unreviewed

CVE-2018-4050 was published May 13, 2022

An exploitable local privilege escalation vulnerability exists in the privileged helper tool of... Moderate Unreviewed

CVE-2018-4051 was published May 13, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2018-4049 was published May 13, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2018-3974 was published May 13, 2022

The svpn and policyserver components of the F5 BIG-IP APM client prior to version 7.1.7.1 for... High Unreviewed

CVE-2018-5546 was published May 13, 2022

Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for... Moderate Unreviewed

CVE-2017-5118 was published May 13, 2022

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable... Low Unreviewed

CVE-2008-4870 was published May 13, 2022

Previous 1 2 3 4 5 6 7 8 … 53 54 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,338 advisories