Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,077 advisories

Loading
Incorrect default permissions for the Intel(R) RXT for Chromebook application, all versions, may... Moderate Unreviewed
CVE-2021-33166 was published Feb 11, 2022
Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an... High Unreviewed
CVE-2022-21204 was published Feb 11, 2022
Incorrect Default Permissions in Apache Tomcat High
CVE-2020-8022 was published for org.apache.tomcat:tomcat (Maven) Feb 9, 2022 withdrawn
westonsteimel
Incorrect Default Permissions in Apache DolphinScheduler High
CVE-2020-13922 was published for org.apache.dolphinscheduler:dolphinscheduler-api (Maven) Feb 9, 2022
eliteCMS v1.0 is vulnerable to Insecure Permissions via manage_uploads.php. Critical Unreviewed
CVE-2021-46093 was published Feb 2, 2022
A privilege escalation vulnerability exists in the installation of Advantech WISE-PaaS/OTA Server... High Unreviewed
CVE-2021-40397 was published Jan 29, 2022
A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1... High Unreviewed
CVE-2021-40396 was published Jan 29, 2022
A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge... High Unreviewed
CVE-2021-40389 was published Jan 29, 2022
A privilege escalation vulnerability exists in Advantech SQ Manager Server 1.0.6. A specially... High Unreviewed
CVE-2021-40388 was published Jan 29, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability... High Unreviewed
CVE-2021-40413 was published Jan 29, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability... High Unreviewed
CVE-2021-40414 was published Jan 29, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability... Moderate Unreviewed
CVE-2021-40415 was published Jan 29, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability... High Unreviewed
CVE-2021-40416 was published Jan 29, 2022
OneBlog <= 2.2.8 is vulnerable to Insecure Permissions. Low level administrators can delete high... Moderate Unreviewed
CVE-2021-46085 was published Jan 26, 2022
xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. The front end of this open source... High Unreviewed
CVE-2021-46086 was published Jan 26, 2022
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure... Moderate Unreviewed
CVE-2022-22296 was published Jan 25, 2022
Incorrect Default Permissions and Improper Access Control in snipe-it Moderate
CVE-2022-0179 was published for snipe/snipe-it (Composer) Jan 21, 2022
Incorrect Default Permissions in log4js Moderate
CVE-2022-21704 was published for log4js (npm) Jan 21, 2022
lamweili ranjit-git
A Incorrect Default Permissions vulnerability in the parsec package of openSUSE Factory allows... High Unreviewed
CVE-2021-36781 was published Jan 15, 2022
The cellular module has a vulnerability in permission management. Successful exploitation of this... High Unreviewed
CVE-2021-40004 was published Jan 11, 2022
Laundry Booking Management System 1.0 (Latest) and previous versions are affected by a remote... Critical Unreviewed
CVE-2021-45003 was published Jan 11, 2022
PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability ... Moderate Unreviewed
CVE-2021-37132 was published Jan 4, 2022
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast... High Unreviewed
CVE-2021-39967 was published Jan 4, 2022
Sandbox component in Avast Antivirus prior to 20.4 has an insecure permission which could be... High Unreviewed
CVE-2021-45335 was published Dec 28, 2021
A privilege escalation vulnerability exists in the Windows version of installation for Advantech... High Unreviewed
CVE-2021-21912 was published Dec 23, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database