GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,787

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,840 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A remote unauthorized attacker may gather sensitive information of the application, due to... High Unreviewed

CVE-2025-49184 was published Jun 12, 2025

The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file read in all versions... Moderate Unreviewed

CVE-2025-4798 was published Jun 11, 2025

In Apache CloudStack, a flaw in access control affects the listTemplates and listIsos APIs. A... Moderate Unreviewed

CVE-2025-30675 was published Jun 11, 2025

When an Apache CloudStack user-account creates a CKS-based Kubernetes cluster in a project, the... High Unreviewed

CVE-2025-26521 was published Jun 11, 2025

Acrobat Reader versions 24.001.30235, 20.005.30763, 25.001.20521 and earlier are affected by an... Moderate Unreviewed

CVE-2025-43579 was published Jun 10, 2025

Exposure of sensitive information to an unauthorized actor in Windows Hello allows an authorized... Moderate Unreviewed

CVE-2025-47969 was published Jun 10, 2025

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] in FortiOS... Moderate Unreviewed

CVE-2025-25250 was published Jun 10, 2025

Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an... Moderate Unreviewed

CVE-2025-40662 was published Jun 10, 2025

The AuthPolicy metadata on Red Hat Connectivity Link contains an object which stores secretes,... Moderate Unreviewed

CVE-2025-25209 was published Jun 9, 2025

Exposure of sensitive information to an unauthorized actor in Power Automate allows an... Critical Unreviewed

CVE-2025-47966 was published Jun 5, 2025

PostgreSQL Anonymizer v2.0 and v2.1 contain a vulnerability that allows a masked user to bypass... Moderate Unreviewed

CVE-2025-5690 was published Jun 5, 2025

A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP),... Moderate Unreviewed

CVE-2025-20129 was published Jun 4, 2025

A vulnerability was found in Multilaser Sirius RE016 MLT1.0. It has been rated as problematic.... Moderate Unreviewed

CVE-2025-5436 was published Jun 2, 2025

The Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms... Moderate Unreviewed

CVE-2025-4659 was published May 30, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-31231 was published May 30, 2025

Exposure of private personal information to an unauthorized actor in the user vaults component of... High Unreviewed

CVE-2025-5334 was published May 29, 2025

Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote... Moderate Unreviewed

CVE-2025-5281 was published May 27, 2025

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55... Moderate Unreviewed

CVE-2025-5064 was published May 27, 2025

There is a possible disclosure of Bluetooth adapter details due to a permissions bypass. This... Moderate Unreviewed

CVE-2024-56193 was published May 27, 2025

Script elements loading cross-origin resources generated load and error events which leaked... Moderate Unreviewed

CVE-2025-5266 was published May 27, 2025

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1.... Moderate Unreviewed

CVE-2025-5184 was published May 26, 2025

An unauthenticated remote attacker can access information about running processes via the SNMP... High Unreviewed

CVE-2025-41654 was published May 26, 2025

PrinterShare Android application allows the capture of Gmail authentication tokens that can be... Critical Unreviewed

CVE-2025-5098 was published May 23, 2025

Infoblox NETMRI before 7.6.1 has a vulnerability allowing remote authenticated users to read... Moderate Unreviewed

CVE-2024-54188 was published May 22, 2025

An issue in Zalo v23.09.01 allows attackers to obtain sensitive user information via a crafted... High Unreviewed

CVE-2024-53359 was published May 20, 2025

Previous 1…12…354 Next

Previous 1 2 … 10 11 12 13 14 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,840 advisories