Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,134 advisories

Loading
Permission control vulnerability in the Connectivity module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-56440 was published Jan 8, 2025
Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed
CVE-2024-56447 was published Jan 8, 2025
The Lock Master app 2.2.4 for Android allows unauthorized apps to modify the values in its... High Unreviewed
CVE-2023-29733 was published May 30, 2023
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10... Moderate Unreviewed
CVE-2019-3870 was published May 13, 2022
An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210... Critical Unreviewed
CVE-2024-57684 was published Jan 16, 2025
The Settings module has the file privilege escalation vulnerability.Successful exploitation of... High Unreviewed
CVE-2023-1693 was published May 20, 2023
WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application... Critical Unreviewed
CVE-2024-57032 was published Jan 17, 2025
Foxit PDF Reader (12.1.1.15289 and earlier) and Foxit PDF Editor (12.1.1.15289 and all previous... High Unreviewed
CVE-2023-33240 was published May 19, 2023
In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to... High Unreviewed
CVE-2024-49737 was published Jan 22, 2025
In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an... High Unreviewed
CVE-2024-49742 was published Jan 22, 2025
In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit... High Unreviewed
CVE-2024-49736 was published Jan 22, 2025
In multiple locations, there is a possible bypass of user consent to enabling new Bluetooth HIDs... High Unreviewed
CVE-2024-34730 was published Jan 22, 2025
A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated... Critical Unreviewed
CVE-2025-20156 was published Jan 22, 2025
Insecure permissions in the ps_customer table of Prestashop scquickaccounting before v3.7.3... Moderate Unreviewed
CVE-2023-30281 was published May 16, 2023
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client... Critical Unreviewed
CVE-2024-46505 was published Jan 9, 2025
Improper handling of case sensitivity in Jenkins OpenId Connect Authentication Plugin High
CVE-2025-24399 was published for org.jenkins-ci.plugins:oic-auth (Maven) Jan 22, 2025
Cache confusion in Jenkins Eiffel Broadcaster Plugin Moderate
CVE-2025-24400 was published for com.axis.jenkins.plugins.eiffel:eiffel-broadcaster (Maven) Jan 22, 2025
Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed
CVE-2025-0543 was published Jan 25, 2025
There is a permissions and access control vulnerability in ZXCLOUD IRAI.An attacker can elevate... Moderate Unreviewed
CVE-2024-22062 was published Jul 9, 2024
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2025-24176 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS... Critical Unreviewed
CVE-2025-24174 was published Jan 28, 2025
This issue was addressed with improved message validation. This issue is fixed in macOS Sequoia... Critical Unreviewed
CVE-2025-24135 was published Jan 28, 2025
Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2025-24826 was published Jan 28, 2025
CMSimple 5.16 allows the user to edit log.php file via print page. Critical Unreviewed
CVE-2024-57548 was published Jan 28, 2025
Weak default folder permissions Moderate Unreviewed
CVE-2024-55930 was published Jan 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database