Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,966 advisories

Loading
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-24217 was published Apr 1, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app... Critical Unreviewed
CVE-2025-24204 was published Apr 1, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5,... Moderate Unreviewed
CVE-2025-24164 was published Apr 1, 2025
The issue was addressed with improved handling of protocols. This issue is fixed in macOS Ventura... Critical Unreviewed
CVE-2024-40864 was published Apr 1, 2025
A cookie management issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2024-54467 was published Mar 10, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Critical Unreviewed
CVE-2025-24146 was published Jan 28, 2025
An information disclosure issue was addressed with improved privacy controls. This issue is fixed... Moderate Unreviewed
CVE-2025-24134 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2025-24138 was published Jan 28, 2025
Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor... Moderate Unreviewed
CVE-2024-12426 was published Jan 7, 2025
Information exposure vulnerability in RT software affecting version 4.4.1. This vulnerability... Moderate Unreviewed
CVE-2024-3262 was published Apr 4, 2024
MongoDB Driver may publish events containing authentication-related data Moderate
CVE-2021-32050 was published for github.com/mongodb/mongo-swift-driver (Composer) Aug 29, 2023
In freeradius, the EAP-PWD function compute_password_element() leaks information about the... High Unreviewed
CVE-2022-41859 was published Jan 17, 2023
A vulnerability was found in systemd. This security flaw can cause a local information leak due... Moderate Unreviewed
CVE-2022-4415 was published Jan 11, 2023
The installation component in Hospira MedNet before 6.1 places cleartext credentials in... Low Unreviewed
CVE-2014-5400 was published May 17, 2022
Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database... High Unreviewed
CVE-2014-5405 was published May 17, 2022
A compromised web process using malicious IPC messages could have caused the privileged browser... Critical Unreviewed
CVE-2025-11710 was published Oct 14, 2025
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... High Unreviewed
CVE-2025-53066 was published Oct 21, 2025
Exposure of sensitive information in Viday. This vulnerability could allow an attacker to obtain... Moderate Unreviewed
CVE-2025-40646 was published Oct 2, 2025
A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown... Moderate Unreviewed
CVE-2025-12616 was published Nov 3, 2025
The WP Discourse plugin for WordPress is vulnerable to Information Exposure in all versions up to... Moderate Unreviewed
CVE-2025-11983 was published Nov 1, 2025
The List category posts plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2025-11377 was published Nov 1, 2025
Incorrect access control in the realtime.cgi endpoint of Deep Sea Electronics devices DSE855 v1.1... Critical Unreviewed
CVE-2025-29270 was published Oct 31, 2025
The Analytify Pro plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-12521 was published Oct 31, 2025
HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile... High Unreviewed
CVE-2024-30135 was published Oct 30, 2025
The following HP Card Readers B Models (X3D03B & Y7C05B) are potentially vulnerable to... Moderate Unreviewed
CVE-2025-11998 was published Oct 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database