Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

47 advisories

Loading
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-43259 was published Jul 30, 2025
The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18... Moderate Unreviewed
CVE-2025-43217 was published Jul 30, 2025
This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and... Moderate Unreviewed
CVE-2025-31276 was published Jul 30, 2025
A flaw was found in Red Hat Advanced Cluster Management through versions 2.10, before 2.10.7, 2... Moderate Unreviewed
CVE-2025-6017 was published Jul 2, 2025
Sensitive device logger information in ASPECT may be exposed if administrator credentials become... Moderate Unreviewed
CVE-2024-13953 was published May 22, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 17.1 before 17.10.7, 17... Moderate Unreviewed
CVE-2025-0679 was published May 22, 2025
Insufficient default configuration in HCL Leap allows anonymous access to directory information. Moderate Unreviewed
CVE-2023-45721 was published May 1, 2025
Insufficient default configuration in HCL Leap allows anonymous access to directory information. Moderate Unreviewed
CVE-2023-45720 was published Apr 24, 2025
By first using the AI chatbot in one tab and later activating it in another tab, the document... Moderate Unreviewed
CVE-2025-3035 was published Apr 1, 2025
A vulnerability in Intrexx Portal Server 12.0.2 and earlier which was classified as problematic... Moderate Unreviewed
CVE-2025-26816 was published Mar 19, 2025
Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote... Moderate Unreviewed
CVE-2025-27080 was published Mar 18, 2025
A vulnerability in the AOS-CX REST interface could allow an authenticated remote attacker with... Moderate Unreviewed
CVE-2025-25042 was published Mar 18, 2025
The Qubely – Advanced Gutenberg Blocks plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-13228 was published Mar 11, 2025
The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-13217 was published Feb 27, 2025
The Qardio Arm iOS application exposes sensitive data such as usernames and passwords in a plist... Moderate Unreviewed
CVE-2025-20615 was published Feb 14, 2025
The Directorist: AI-Powered WordPress Business Directory Plugin with Classified Ads Listings... Moderate Unreviewed
CVE-2024-12041 was published Feb 1, 2025
The HT Event – WordPress Event Manager Plugin for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13216 was published Jan 31, 2025
The Elementor Addon Elements plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed
CVE-2024-13215 was published Jan 15, 2025
The Event Monster – Event Management, Tickets Booking, Upcoming Event plugin for WordPress is... Moderate Unreviewed
CVE-2024-11396 was published Jan 14, 2025
IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could could allow a physical user to obtain... Moderate Unreviewed
CVE-2024-41780 was published Jan 3, 2025
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed
CVE-2024-11712 was published Dec 14, 2024
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain... Moderate Unreviewed
CVE-2024-37070 was published Nov 19, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-49025 was published Nov 14, 2024
An exposure of sensitive information to an unauthorized actor [CWE-200] in Fortinet FortiManager... Moderate Unreviewed
CVE-2023-44255 was published Nov 12, 2024
Sensitive information disclosure due to spell-jacking. The following products are affected:... Moderate Unreviewed
CVE-2024-49386 was published Oct 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database