Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,837 advisories

Loading
The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-7780 was published Jul 25, 2025
HCL iAutomate is affected by a sensitive data exposure vulnerability. This issue may allow... High Unreviewed
CVE-2025-31955 was published Jul 24, 2025
In some cases search terms persisted in the URL bar even after navigating away from the search... High Unreviewed
CVE-2025-8039 was published Jul 22, 2025
The Birth Chart Compatibility plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed
CVE-2025-6082 was published Jul 22, 2025
An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the... Moderate Unreviewed
CVE-2025-52372 was published Jul 21, 2025
WinMatrix3 Web package developed by Simopro Technology has a SQL Injection vulnerability,... High Unreviewed
CVE-2025-7919 was published Jul 21, 2025
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2025-46382 was published Jul 20, 2025
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been rated as problematic.... Moderate Unreviewed
CVE-2025-7874 was published Jul 20, 2025
In the OpenSSL compatibility layer implementation, the function RAND_poll() was not behaving as... High Unreviewed
CVE-2025-7394 was published Jul 19, 2025
An issue in Perplexity AI GPT-4 v.2.51.0 allows a remote attacker to obtain sensitive information... High Unreviewed
CVE-2025-50708 was published Jul 18, 2025
HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user... Low Unreviewed
CVE-2024-42209 was published Jul 17, 2025
An unauthenticated arbitrary file read exists in LILIN Digital Video Recorder (DVR) devices prior... High Unreviewed
CVE-2025-34130 was published Jul 17, 2025
Vulnerability in the Siebel CRM End User product of Oracle Siebel CRM (component: User Interface)... Moderate Unreviewed
CVE-2025-30758 was published Jul 15, 2025
An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17. High Unreviewed
CVE-2024-51769 was published Jul 14, 2025
A vulnerability classified as critical was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600,... Moderate Unreviewed
CVE-2025-7572 was published Jul 14, 2025
A vulnerability, which was classified as critical, has been found in LB-LINK BL-AC1900, BL... Moderate Unreviewed
CVE-2025-7573 was published Jul 14, 2025
A vulnerability, which was classified as critical, was found in LB-LINK BL-AC3600 up to 1.0.22.... Moderate Unreviewed
CVE-2025-7565 was published Jul 14, 2025
The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for... High Unreviewed
CVE-2020-36848 was published Jul 12, 2025
The WP Register Profile With Shortcode plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2025-4593 was published Jul 11, 2025
The WoodMart plugin for WordPress is vulnerable to Information Exposure in all versions up to,... Moderate Unreviewed
CVE-2025-6745 was published Jul 11, 2025
A path traversal vulnerability exists in Riverbed SteelHead VCX appliances (confirmed in VCX255U... High Unreviewed
CVE-2025-34098 was published Jul 10, 2025
An unauthenticated information disclosure vulnerability exists in the WordPress Total Upkeep... Critical Unreviewed
CVE-2025-34084 was published Jul 9, 2025
Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework... Moderate Unreviewed
CVE-2025-49664 was published Jul 8, 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed
CVE-2025-48808 was published Jul 8, 2025
Exposure of sensitive information to an unauthorized actor in Windows Imaging Component allows an... Moderate Unreviewed
CVE-2025-47980 was published Jul 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database