GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,249

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,491 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Exposure of private personal information to an unauthorized actor in the user vaults component of... High Unreviewed

CVE-2025-5334 was published May 29, 2025

An unauthenticated remote attacker can access information about running processes via the SNMP... High Unreviewed

CVE-2025-41654 was published May 26, 2025

An issue in Zalo v23.09.01 allows attackers to obtain sensitive user information via a crafted... High Unreviewed

CVE-2024-53359 was published May 20, 2025

VMware Cloud Foundation contains an information disclosure vulnerability. A malicious actor with... High Unreviewed

CVE-2025-41230 was published May 20, 2025

The Wise Chat plugin for WordPress is vulnerable to Sensitive Information Exposure in all... High Unreviewed

CVE-2024-13613 was published May 17, 2025

A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf... High Unreviewed

CVE-2025-3877 was published May 14, 2025

The issue was addressed with improved handling of caches. This issue is fixed in macOS Sequoia 15... High Unreviewed

CVE-2025-31256 was published May 13, 2025

A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 18.5 and... High Unreviewed

CVE-2025-31225 was published May 13, 2025

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5... High Unreviewed

CVE-2025-31207 was published May 13, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace. High Unreviewed

CVE-2025-32983 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible Without Proper... High Unreviewed

CVE-2025-32986 was published Apr 25, 2025

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed

CVE-2025-23174 was published Apr 21, 2025

An information disclosure vulnerability in the component /socket.io/1/websocket/ of Soundcraft Ui... High Unreviewed

CVE-2025-28235 was published Apr 18, 2025

Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to ... High Unreviewed

CVE-2025-3698 was published Apr 16, 2025

Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: XML Services). ... High Unreviewed

CVE-2025-30724 was published Apr 15, 2025

Exposure of sensitive information to an unauthorized actor in Outlook for Android allows an... High Unreviewed

CVE-2025-29805 was published Apr 8, 2025

The KB Support – Customer Support Ticket & Helpdesk Plugin, Knowledge Base Plugin plugin for... High Unreviewed

CVE-2024-13604 was published Apr 7, 2025

The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13567 was published Apr 1, 2025

Telesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting... High Unreviewed

CVE-2025-26009 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter... High Unreviewed

CVE-2025-26001 was published Mar 26, 2025

Vanna v0.6.3 is vulnerable to SQL injection via Snowflake database in its file staging operations... High Unreviewed

CVE-2024-8055 was published Mar 20, 2025

In version 1.5.5 of mintplex-labs/anything-llm, the `/setup-complete` API endpoint allows... High Unreviewed

CVE-2024-6842 was published Mar 20, 2025

In version 3.83 of binary-husky/gpt_academic, a Server-Side Request Forgery (SSRF) vulnerability... High Unreviewed

CVE-2024-11031 was published Mar 20, 2025

Exposure of password in web-based SSH authentication component in Devolutions Server 2024.3.13... High Unreviewed

CVE-2025-2277 was published Mar 13, 2025

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... High Unreviewed

CVE-2025-24071 was published Mar 11, 2025

Previous 1 2 3 4 5 … 59 60 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,491 advisories