GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,025

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,842 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Information disclosure may occur due to improper permission and access controls to Video... High Unreviewed

CVE-2024-53011 was published Mar 3, 2025

An information disclosure vulnerability in the component /rest/cb/executeBasicSearch of Serosoft... High Unreviewed

CVE-2025-25951 was published Mar 3, 2025

The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2024-13546 was published Mar 1, 2025

The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss... High Unreviewed

CVE-2024-13611 was published Mar 1, 2025

The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is... High Unreviewed

CVE-2024-13911 was published Mar 1, 2025

The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable... High Unreviewed

CVE-2024-13568 was published Mar 1, 2025

GeoVision ASManager Windows desktop application with the version 6.1.2.0 or less, is vulnerable... Moderate Unreviewed

CVE-2025-26263 was published Feb 28, 2025

The Order Attachments for WooCommerce plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-13638 was published Feb 28, 2025

The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-13796 was published Feb 28, 2025

An information disclosure vulnerability in Bosscomm IF740 Firmware versions:11001.7078 & v11001... High Unreviewed

CVE-2025-25729 was published Feb 28, 2025

In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific... Moderate Unreviewed

CVE-2024-38290 was published Feb 28, 2025

An issue in IKEA CN iOS 4.13.0 allows attackers to access sensitive user information via... High Unreviewed

CVE-2025-25333 was published Feb 27, 2025

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is... Moderate Unreviewed

CVE-2025-1063 was published Feb 25, 2025

A vulnerability classified as problematic was found in SourceCodester Best Employee Management... Moderate Unreviewed

CVE-2025-1606 was published Feb 24, 2025

A vulnerability has been found in Anhui Xufan Information Technology EasyCVR up to 2.7.0 and... Moderate Unreviewed

CVE-2025-1595 was published Feb 24, 2025

An issue in QiboSoft QiboCMS X1.0 allows a remote attacker to obtain sensitive information via... High Unreviewed

CVE-2025-22973 was published Feb 21, 2025

Nagios XI 2024R1.2.2 has an Information Disclosure vulnerability, which allows unauthenticated... Moderate Unreviewed

CVE-2024-54961 was published Feb 20, 2025

Multiple memory leaks have been identified in the ABC file parsing functions ... Moderate Unreviewed

CVE-2025-26310 was published Feb 20, 2025

A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser... Moderate Unreviewed

CVE-2025-26309 was published Feb 20, 2025

An issue in Bento4 v1.6.0-641 allows an attacker to cause a memory leak via Ap4Marlin.cpp and... Moderate Unreviewed

CVE-2025-25946 was published Feb 20, 2025

An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the... Moderate Unreviewed

CVE-2025-25942 was published Feb 20, 2025

An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the... Moderate Unreviewed

CVE-2025-25945 was published Feb 20, 2025

Certain Lexmark products through 2020-05-25 allow XSS which allows an attacker to obtain session... Moderate Unreviewed

CVE-2020-13481 was published Feb 19, 2025

A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series... Moderate Unreviewed

CVE-2025-20158 was published Feb 19, 2025

FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component... Moderate Unreviewed

CVE-2025-25468 was published Feb 19, 2025

Previous 1…20…354 Next

Previous 1 2 … 18 19 20 21 22 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,842 advisories