Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,969
Erlang
39
GitHub Actions
38
Go
2,622
Maven
5,000+
npm
4,255
NuGet
760
pip
4,045
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,960 advisories

Loading
A vulnerability in the API subsystem of Cisco Unified Intelligence Center could allow an... Moderate Unreviewed
CVE-2025-20377 was published Nov 5, 2025
The FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce plugin... Moderate Unreviewed
CVE-2025-12468 was published Nov 5, 2025
The File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress is... High Unreviewed
CVE-2025-12139 was published Nov 5, 2025
The KiotViet Sync plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-12677 was published Nov 5, 2025
The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Critical Unreviewed
CVE-2025-11749 was published Nov 5, 2025
codeshare v1.0.0 was discovered to contain an information leakage vulnerability. Moderate Unreviewed
CVE-2025-60925 was published Nov 4, 2025
An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080,... High Unreviewed
CVE-2025-54323 was published Nov 4, 2025
A logic issue was addressed with improved checks. This issue is fixed in iOS 26.1 and iPadOS 26.1... Moderate Unreviewed
CVE-2025-43460 was published Nov 4, 2025
A privacy issue was addressed with improved checks. This issue is fixed in watchOS 26.1, iOS 26.1... Moderate Unreviewed
CVE-2025-43455 was published Nov 4, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43479 was published Nov 4, 2025
The issue was addressed with improved checks. This issue is fixed in iOS 26.1 and iPadOS 26.1. An... Moderate Unreviewed
CVE-2025-43495 was published Nov 4, 2025
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed
CVE-2025-43468 was published Nov 4, 2025
This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-43411 was published Nov 4, 2025
The issue was addressed with improved handling of caches. This issue is fixed in iOS 26.1 and... High Unreviewed
CVE-2025-43449 was published Nov 4, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43378 was published Nov 4, 2025
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in... Moderate Unreviewed
CVE-2025-43391 was published Nov 4, 2025
This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 26,... High Unreviewed
CVE-2025-43323 was published Nov 4, 2025
A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, watchOS... Moderate Unreviewed
CVE-2025-43345 was published Nov 4, 2025
lakeFS affected by unauthenticated access to API usage metrics Moderate
CVE-2025-64179 was published for github.com/treeverse/lakefs (Go) Nov 3, 2025
arielshaqed nopcoder
Credited to arielshaqed and nopcoder
An issue in Raspberry Pi Imager version 1.9.6 for Windows, affecting its OS customization feature... Moderate Unreviewed
CVE-2025-60892 was published Nov 3, 2025
A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown... Moderate Unreviewed
CVE-2025-12616 was published Nov 3, 2025
The WP Discourse plugin for WordPress is vulnerable to Information Exposure in all versions up to... Moderate Unreviewed
CVE-2025-11983 was published Nov 1, 2025
The List category posts plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2025-11377 was published Nov 1, 2025
Incorrect access control in the realtime.cgi endpoint of Deep Sea Electronics devices DSE855 v1.1... Critical Unreviewed
CVE-2025-29270 was published Oct 31, 2025
The Analytify Pro plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-12521 was published Oct 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database