Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
50
GitHub Actions
50
Go
3,673
Maven
5,000+
npm
5,000+
NuGet
932
pip
4,891
Pub
13
RubyGems
1,051
Rust
1,315
Swift
53
Unreviewed advisories
All unreviewed
5,000+

6 advisories

Loading
Insecure preserved inherited permissions vulnerability in Cerberus FTP Server on Windows allows... High Unreviewed
CVE-2026-6265 was published Apr 27, 2026
IBM i 7.6  contains a privilege escalation vulnerability due to incorrect profile swapping in an... High Unreviewed
CVE-2025-2947 was published Apr 17, 2025
Insecure permissions in chaos-mesh v2.6.3 allows attackers to access sensitive data and escalate... High Unreviewed
CVE-2024-36538 was published Jul 24, 2024
Insecure permissions in 14Finger v1.1 allow attackers to escalate privileges from normal user to... High Unreviewed
CVE-2024-37769 was published Jul 5, 2024
Cargo not respecting umask when extracting crate archives High
CVE-2023-38497 was published for cargo (Rust) Aug 3, 2023
addisoncrump Credited to addisoncrump, emilyalbini, weihanglo, ehuss, cuviper, and Manishearth emilyalbini emilyalbini
weihanglo weihanglo ehuss ehuss cuviper cuviper Manishearth Manishearth
Keycloak Authentication Error Critical
CVE-2019-14910 was published for org.keycloak:keycloak-parent (Maven) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database