GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,822
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,121
NuGet 735
pip 3,942
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,979

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,012 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Birth Chart Compatibility plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2025-6082 was published Jul 22, 2025

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the... Moderate Unreviewed

CVE-2025-52372 was published Jul 21, 2025

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed

CVE-2025-46382 was published Jul 20, 2025

A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been rated as problematic.... Moderate Unreviewed

CVE-2025-7874 was published Jul 20, 2025

Vulnerability in the Siebel CRM End User product of Oracle Siebel CRM (component: User Interface)... Moderate Unreviewed

CVE-2025-30758 was published Jul 15, 2025

A vulnerability classified as critical was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600,... Moderate Unreviewed

CVE-2025-7572 was published Jul 14, 2025

A vulnerability, which was classified as critical, has been found in LB-LINK BL-AC1900, BL... Moderate Unreviewed

CVE-2025-7573 was published Jul 14, 2025

A vulnerability, which was classified as critical, was found in LB-LINK BL-AC3600 up to 1.0.22.... Moderate Unreviewed

CVE-2025-7565 was published Jul 14, 2025

The WoodMart plugin for WordPress is vulnerable to Information Exposure in all versions up to,... Moderate Unreviewed

CVE-2025-6745 was published Jul 11, 2025

The WP Register Profile With Shortcode plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2025-4593 was published Jul 11, 2025

Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework... Moderate Unreviewed

CVE-2025-49664 was published Jul 8, 2025

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed

CVE-2025-48808 was published Jul 8, 2025

Exposure of sensitive information to an unauthorized actor in Windows Imaging Component allows an... Moderate Unreviewed

CVE-2025-47980 was published Jul 8, 2025

The Anonymous Restricted Content plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-11089 was published Jul 7, 2025

The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... Moderate Unreviewed

CVE-2024-13451 was published Jul 2, 2025

An exposure of sensitive information vulnerability was identified in GitHub Enterprise Server... Moderate Unreviewed

CVE-2025-6600 was published Jul 1, 2025

An unauthenticated information disclosure vulnerability exists in AVTECH IP cameras, DVRs, and... Moderate Unreviewed

CVE-2025-34052 was published Jul 1, 2025

An information disclosure vulnerability exists in OneLogin AD Connector versions prior to 6.1.5... Moderate Unreviewed

CVE-2025-34062 was published Jul 1, 2025

A server-side request forgery vulnerability exists in multiple firmware versions of AVTECH DVR... Moderate Unreviewed

CVE-2025-34051 was published Jul 1, 2025

An attacker who enumerated resources from the WebCompat extension could have obtained a... Moderate Unreviewed

CVE-2025-6425 was published Jun 26, 2025

An issue in NCR Terminal Handler 1.5.1 allows a low-level privileged authenticated attacker to... Moderate Unreviewed

CVE-2023-47298 was published Jun 23, 2025

A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler does not... Moderate Unreviewed

CVE-2025-49177 was published Jun 17, 2025

The created backup files are unencrypted, making the application vulnerable for gathering... Moderate Unreviewed

CVE-2025-49200 was published Jun 12, 2025

The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file read in all versions... Moderate Unreviewed

CVE-2025-4798 was published Jun 11, 2025

In Apache CloudStack, a flaw in access control affects the listTemplates and listIsos APIs. A... Moderate Unreviewed

CVE-2025-30675 was published Jun 11, 2025

Previous 1…3…241 Next

Previous 1 2 3 4 5 … 240 241 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,012 advisories