Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,768 advisories

Loading
The GreenPay(tm) by Green.Money plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2025-2882 was published Apr 8, 2025
The Melhor Envio plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-13820 was published Apr 8, 2025
A vulnerability was found in Vivotek NVR ND8422P, NVR ND9525P and NVR ND9541P 2.4.0.204/3.3.0.104... Moderate Unreviewed
CVE-2025-3403 was published Apr 8, 2025
There may be information disclosure during memory re-allocation in TZ Secure OS. Moderate Unreviewed
CVE-2024-43046 was published Apr 7, 2025
Path traversal vulnerability in the DFS module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2025-31174 was published Apr 7, 2025
File read permission bypass vulnerability in the kernel file system module Impact: Successful... Moderate Unreviewed
CVE-2025-31171 was published Apr 7, 2025
The Simple Membership plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11088 was published Apr 5, 2025
Vite allows server.fs.deny to be bypassed with .svg or relative paths Moderate
CVE-2025-31486 was published for vite (npm) Apr 4, 2025
HSwift Iuhsssss
kikayli sw0rd1ight do9gy-msec Onetpaer
Credited to HSwift, Iuhsssss, kikayli, sw0rd1ight, do9gy-msec, and Onetpaer
A flaw was found in Tempo Operator, where it creates a ServiceAccount, ClusterRole, and... Moderate Unreviewed
CVE-2025-2786 was published Apr 2, 2025
A flaw was found in the Tempo Operator. When the Jaeger UI Monitor Tab functionality is enabled... Moderate Unreviewed
CVE-2025-2842 was published Apr 2, 2025
An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via... Moderate Unreviewed
CVE-2003-20001 was published Apr 1, 2025
An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This... Moderate Unreviewed
CVE-2025-3031 was published Apr 1, 2025
Vulnerability in Drupal Profile Private.This issue affects Profile Private: *.*. Moderate Unreviewed
CVE-2025-3059 was published Apr 1, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2025-31191 was published Apr 1, 2025
A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.4,... Moderate Unreviewed
CVE-2025-30470 was published Apr 1, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-30454 was published Apr 1, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS... Moderate Unreviewed
CVE-2025-30455 was published Apr 1, 2025
The issue was addressed with improved restriction of data container access. This issue is fixed... Moderate Unreviewed
CVE-2025-30463 was published Apr 1, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-30451 was published Apr 1, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-30435 was published Apr 1, 2025
The issue was addressed with improved checks. This issue is fixed in visionOS 2.4, iOS 18.4 and... Moderate Unreviewed
CVE-2025-30439 was published Apr 1, 2025
A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-30443 was published Apr 1, 2025
The issue was resolved by sanitizing logging This issue is fixed in visionOS 2.4, macOS Ventura... Moderate Unreviewed
CVE-2025-30447 was published Apr 1, 2025
This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.4... Moderate Unreviewed
CVE-2025-24281 was published Apr 1, 2025
A library injection issue was addressed with additional restrictions. This issue is fixed in... Moderate Unreviewed
CVE-2025-24282 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database