Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

9,596 advisories

Loading
Moodle sensitive information disclosure Moderate
CVE-2015-5340 was published for moodle/moodle (Composer) May 13, 2022
decsecre583
Infoblox NETMRI before 7.6.1 has a vulnerability allowing remote authenticated users to read... Moderate Unreviewed
CVE-2024-54188 was published May 22, 2025
An unauthenticated remote attacker can access information about running processes via the SNMP... High Unreviewed
CVE-2025-41654 was published May 26, 2025
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1.... Moderate Unreviewed
CVE-2025-5184 was published May 26, 2025
Apache IoTDB JDBC Driver Discloses Sensitive Information via Log Files Moderate
CVE-2025-26795 was published for org.apache.iotdb:iotdb-jdbc (Maven) May 14, 2025
AnonySE26
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2023-42884 was published Dec 12, 2023
An information disclosure issue was addressed by removing the vulnerable code. This issue is... Moderate Unreviewed
CVE-2022-32849 was published Sep 25, 2022
Grafana Alerting VictorOps integration could be exposed to users with Viewer permission Moderate
CVE-2024-11741 was published for github.com/grafana/grafana (Go) Jan 31, 2025
Script elements loading cross-origin resources generated load and error events which leaked... Moderate Unreviewed
CVE-2025-5266 was published May 27, 2025
Rancher's SAML-based login via CLI can be denied by unauthenticated users Moderate
CVE-2025-23387 was published for github.com/rancher/rancher (Go) Feb 27, 2025
AnonySE26
Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55... Moderate Unreviewed
CVE-2025-5064 was published May 27, 2025
Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote... Moderate Unreviewed
CVE-2025-5281 was published May 27, 2025
Liferay Portal and Liferay DXP May Reveal S3 Store's Proxy Password Moderate
CVE-2021-29043 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
Exposure of private personal information to an unauthorized actor in the user vaults component of... High Unreviewed
CVE-2025-5334 was published May 29, 2025
An isolated local disclosure of information and potential isolated local arbitrary code execution... High Unreviewed
CVE-2022-28638 was published Sep 21, 2022
Windows Kernel Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30197. Moderate Unreviewed
CVE-2022-34708 was published Aug 10, 2022
Windows Defender Credential Guard Information Disclosure Vulnerability. This CVE ID is unique... Moderate Unreviewed
CVE-2022-34710 was published Aug 10, 2022
Windows Defender Credential Guard Information Disclosure Vulnerability. This CVE ID is unique... Moderate Unreviewed
CVE-2022-34712 was published Aug 10, 2022
There is a possible disclosure of Bluetooth adapter details due to a permissions bypass. This... Moderate Unreviewed
CVE-2024-56193 was published May 27, 2025
The Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms... Moderate Unreviewed
CVE-2025-4659 was published May 30, 2025
An SSRF issue was discovered in Zoho Application Control Plus before version 10.0.511. The mail... Moderate Unreviewed
CVE-2020-15594 was published May 24, 2022
An issue was discovered in Zoho ManageEngine Key Manager Plus before 6200. A service exposed by... Moderate Unreviewed
CVE-2022-24447 was published Mar 3, 2022
An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the... Moderate Unreviewed
CVE-2022-45167 was published Jan 10, 2023
An issue was discovered on Innovaphone PBX before 14r1 devices. It provides different responses... Moderate Unreviewed
CVE-2024-24720 was published Feb 27, 2024
An issue was discovered in the Archibus app 4.0.3 for iOS. There is an XSS vulnerability in the... Moderate Unreviewed
CVE-2023-48644 was published Mar 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database