Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,966 advisories

Loading
A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits... Moderate Unreviewed
CVE-2024-28834 was published Mar 21, 2024
Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to... Moderate Unreviewed
CVE-2023-4345 was published Aug 15, 2023
A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be... Moderate Unreviewed
CVE-2023-2088 was published May 12, 2023
eWON devices with firmware before 10.1s0 do not have an off autocomplete attribute for a password... High Unreviewed
CVE-2015-7928 was published May 17, 2022
urllib3's request body not stripped after redirect from 303 status changes request method to GET Moderate
CVE-2023-45803 was published for urllib3 (pip) Oct 17, 2023
ranjit-git illia-v
sethmlarson Hacked36
Credited to ranjit-git, illia-v, sethmlarson, and Hacked36
`Cookie` HTTP header isn't stripped on cross-origin redirects High
CVE-2023-43804 was published for urllib3 (pip) Oct 2, 2023
ranjit-git pquentin
illia-v sethmlarson
Credited to ranjit-git, pquentin, illia-v, and sethmlarson
TemporaryFolder on unix-like systems does not limit access to created files Moderate
CVE-2022-41946 was published for org.postgresql:postgresql (Maven) Nov 23, 2022
JLLeitschuh vlsi
Credited to JLLeitschuh and vlsi
Exposure of Sensitive Information to an Unauthorized Actor in nanoid Moderate
CVE-2021-23566 was published for nanoid (npm) Jan 21, 2022
baptistecs
Credited to baptistecs
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-43411 was published Nov 4, 2025
A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, watchOS... Moderate Unreviewed
CVE-2025-43345 was published Nov 4, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2025-31191 was published Apr 1, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS... Moderate Unreviewed
CVE-2025-30455 was published Apr 1, 2025
A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-30443 was published Apr 1, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-30424 was published Apr 1, 2025
The issue was addressed with improved checks. This issue is fixed in visionOS 2.4, iOS 18.4 and... Moderate Unreviewed
CVE-2025-30439 was published Apr 1, 2025
This issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.5... Critical Unreviewed
CVE-2025-24279 was published Apr 1, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in visionOS 2.4,... Moderate Unreviewed
CVE-2025-24283 was published Apr 1, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-24253 was published Apr 1, 2025
A privacy issue was addressed by moving sensitive data to a protected location. This issue is... Critical Unreviewed
CVE-2025-24263 was published Apr 1, 2025
A library injection issue was addressed with additional restrictions. This issue is fixed in... Moderate Unreviewed
CVE-2025-24282 was published Apr 1, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-30454 was published Apr 1, 2025
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13... Moderate Unreviewed
CVE-2025-24276 was published Apr 1, 2025
The issue was resolved by sanitizing logging This issue is fixed in visionOS 2.4, macOS Ventura... Moderate Unreviewed
CVE-2025-30447 was published Apr 1, 2025
An injection issue was addressed with improved validation. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2025-24246 was published Apr 1, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7... Moderate Unreviewed
CVE-2025-24244 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database