Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,012 advisories

Loading
Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 (on-premises... Moderate Unreviewed
CVE-2025-53728 was published Aug 12, 2025
Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an... Moderate Unreviewed
CVE-2025-53136 was published Aug 12, 2025
Exposure of sensitive information to an unauthorized actor in Storage Port Driver allows an... Moderate Unreviewed
CVE-2025-53156 was published Aug 12, 2025
The WP Private Content Plus plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed
CVE-2025-4390 was published Aug 12, 2025
YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster... Moderate Unreviewed
CVE-2025-8866 was published Aug 11, 2025
A vulnerability was identified in WuKongOpenSource WukongCRM 11.0. This affects an unknown part... Moderate Unreviewed
CVE-2025-8852 was published Aug 11, 2025
A vulnerability has been found in zlt2000 microservices-platform up to 6.0.0 and classified as... Moderate Unreviewed
CVE-2025-8738 was published Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58257 was published Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58255 was published Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58256 was published Aug 8, 2025
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-8620 was published Aug 6, 2025
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2025-46388 was published Aug 6, 2025
Vulnerability of insufficient information protection in the media library module. Impact:... Moderate Unreviewed
CVE-2025-54615 was published Aug 6, 2025
A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue... Moderate Unreviewed
CVE-2025-8548 was published Aug 5, 2025
A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-8525 was published Aug 4, 2025
A vulnerability classified as problematic has been found in givanz Vvveb up to 1.0.5. This... Moderate Unreviewed
CVE-2025-8519 was published Aug 4, 2025
The BitFire Security – Firewall, WAF, Bot/Spam Blocker, Login Security plugin for WordPress is... Moderate Unreviewed
CVE-2025-6722 was published Aug 2, 2025
The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... Moderate Unreviewed
CVE-2025-4523 was published Aug 1, 2025
Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non... Moderate Unreviewed
CVE-2025-43018 was published Jul 30, 2025
The vulnerability was identified in the code developed specifically for Lenovo. Please visit ... Moderate Unreviewed
CVE-2025-4426 was published Jul 30, 2025
This issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS... Moderate Unreviewed
CVE-2025-43246 was published Jul 30, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6.... Moderate Unreviewed
CVE-2025-43215 was published Jul 30, 2025
A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been classified as... Moderate Unreviewed
CVE-2025-8226 was published Jul 27, 2025
Certain HP DesignJet products may be vulnerable to information disclosure though printer's web... Moderate Unreviewed
CVE-2025-3508 was published Jul 25, 2025
The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-7780 was published Jul 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database