Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,964 advisories

Loading
Email Password Disclosure.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. Critical Unreviewed
CVE-2025-12363 was published Oct 27, 2025
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is... Moderate Unreviewed
CVE-2025-12098 was published Nov 8, 2025
KubeVirt Vulnerable to Arbitrary Host File Read and Write High
CVE-2025-64324 was published for github.com/kubevirt/kubevirt (Go) Nov 7, 2025
mihailkirov Faeris95
jean-edouard
Credited to mihailkirov, Faeris95, and jean-edouard
lakeFS affected by unauthenticated access to API usage metrics Moderate
CVE-2025-64179 was published for github.com/treeverse/lakefs (Go) Nov 3, 2025
arielshaqed nopcoder
Credited to arielshaqed and nopcoder
Quipux 4.0.1 through e1774ac allows enumeration of usernames, and accessing the Ecuadorean... Moderate Unreviewed
CVE-2025-55342 was published Nov 5, 2025
In Nagios Log Server versions prior to 2024R2.0.3, when a user's configured default dashboard is... Moderate Unreviewed
CVE-2025-34272 was published Oct 31, 2025
Omni vulnerable to information leak via API High
CVE-2025-61688 was published for github.com/siderolabs/omni (Go) Oct 13, 2025
utkuozdemir
Credited to utkuozdemir
Canonical LXD Project Existence Determination Through Error Handling in Image Export Function Moderate
CVE-2025-54290 was published for github.com/canonical/lxd (Go) Oct 2, 2025
ownCloud Guests before 0.12.5 allows unauthenticated user enumeration via the /apps/guests... Moderate Unreviewed
CVE-2025-59716 was published Nov 5, 2025
The issue was addressed with improved checks. This issue is fixed in iOS 26.1 and iPadOS 26.1. An... Moderate Unreviewed
CVE-2025-43495 was published Nov 4, 2025
Jenkins Git client Plugin file system information disclosure vulnerability Moderate
CVE-2025-58458 was published for org.jenkins-ci.plugins:git-client (Maven) Sep 3, 2025
Apache Superset data query improperly discloses database schema information to low-privileged guest user Moderate
CVE-2025-55673 was published for apache-superset (pip) Aug 14, 2025
A vulnerability in the API subsystem of Cisco Unified Intelligence Center could allow an... Moderate Unreviewed
CVE-2025-20377 was published Nov 5, 2025
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed
CVE-2025-43468 was published Nov 4, 2025
The FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce plugin... Moderate Unreviewed
CVE-2025-12468 was published Nov 5, 2025
The File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress is... High Unreviewed
CVE-2025-12139 was published Nov 5, 2025
The KiotViet Sync plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-12677 was published Nov 5, 2025
The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Critical Unreviewed
CVE-2025-11749 was published Nov 5, 2025
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101... Moderate Unreviewed
CVE-2016-5597 was published May 13, 2022
stardict 3.0.1, when Enable Net Dict is configured, sends the contents of the clipboard to a... Moderate Unreviewed
CVE-2009-2260 was published May 2, 2022
The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26, Safari... Moderate Unreviewed
CVE-2025-43356 was published Sep 16, 2025
An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080,... High Unreviewed
CVE-2025-54323 was published Nov 4, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2023-42936 was published Mar 28, 2024
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-23235 was published Mar 8, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5... Moderate Unreviewed
CVE-2023-42888 was published Jan 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database