Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,770 advisories

Loading
The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress... Moderate Unreviewed
CVE-2025-2252 was published Mar 25, 2025
Apache Commons VFS Exposure of Sensitive Information to an Unauthorized Actor Moderate
CVE-2025-30474 was published for org.apache.commons:commons-vfs2 (Maven) Mar 23, 2025
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-2331 was published Mar 22, 2025
A misconfiguration in the AndroidManifest.xml file in hamza417/inure before build97 allows for... Moderate Unreviewed
CVE-2024-0245 was published Mar 20, 2025
The Exposure of Sensitive Information to an Unauthorized Actor vulnerability impacting Beta80... Moderate Unreviewed
CVE-2025-26485 was published Mar 19, 2025
Bare Metal Operator (BMO) can expose any secret from other namespaces via BMCEventSubscription CRD Moderate
CVE-2025-29781 was published for github.com/metal3-io/baremetal-operator/apis (Go) Mar 17, 2025
WHALEEYE debuggerchen
Credited to WHALEEYE and debuggerchen
An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS version 6... Moderate Unreviewed
CVE-2020-29010 was published Mar 17, 2025
A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been classified as... Moderate Unreviewed
CVE-2025-2348 was published Mar 16, 2025
Exposure of sensitive information in My Personnal Credentials password history component in... Moderate Unreviewed
CVE-2025-1636 was published Mar 13, 2025
Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop... Moderate Unreviewed
CVE-2025-1635 was published Mar 13, 2025
The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is... Moderate Unreviewed
CVE-2024-13498 was published Mar 12, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2022-48610 was published Mar 10, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, macOS... Moderate Unreviewed
CVE-2024-54469 was published Mar 10, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-54473 was published Mar 10, 2025
This issue was addressed with improved entitlements. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed
CVE-2024-54463 was published Mar 10, 2025
A cookie management issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2024-54467 was published Mar 10, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1322 was published Mar 8, 2025
The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-10321 was published Mar 8, 2025
The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13640 was published Mar 8, 2025
An exposure of sensitive information vulnerability has been reported to affect product. If... Moderate Unreviewed
CVE-2024-13086 was published Mar 7, 2025
Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy... Moderate Unreviewed
CVE-2025-1714 was published Mar 5, 2025
The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create... Moderate Unreviewed
CVE-2024-11153 was published Mar 5, 2025
A security vulnerability was discovered in the local status page functionality of Cisco Meraki’s... Moderate Unreviewed
CVE-2019-1815 was published Mar 4, 2025
Vulnerability of improper access permission in the HDC module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-58050 was published Mar 4, 2025
Permission verification vulnerability in the media library module Impact: Successful exploitation... Moderate Unreviewed
CVE-2024-58049 was published Mar 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database