Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,791
Maven
5,000+
npm
4,399
NuGet
772
pip
4,175
Pub
12
RubyGems
965
Rust
1,074
Swift
45
Unreviewed advisories
All unreviewed
5,000+

42 advisories

Loading
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe... High Unreviewed
CVE-2025-68988 was published Dec 30, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPXPO... High Unreviewed
CVE-2025-68606 was published Dec 24, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-68576 was published Dec 24, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in 10up... High Unreviewed
CVE-2025-67621 was published Dec 24, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-68494 was published Dec 24, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in wpweb... High Unreviewed
CVE-2025-64258 was published Dec 18, 2025
Student Learning Assessment and Support System developed by JHENG GAO has a Exposure of Sensitive... High Unreviewed
CVE-2025-14712 was published Dec 15, 2025
Vodafone H500s devices running firmware v3.5.10 (hardware model Sercomm VFH500) expose the WiFi... High Unreviewed
CVE-2022-4985 was published Nov 15, 2025
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions... High Unreviewed
CVE-2025-12779 was published Nov 6, 2025
Nagios XI versions prior to 2024R1.4.2 revealed API keys to users who were not authorized for API... High Unreviewed
CVE-2025-34283 was published Oct 31, 2025
Nagios XI versions prior to 2024R1.1.2 may (confirmed in 2024R1.1 and 2024R1.1.1) disclose... High Unreviewed
CVE-2024-13995 was published Oct 31, 2025
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active... High Unreviewed
CVE-2024-13999 was published Oct 31, 2025
Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing... High Unreviewed
CVE-2025-54459 was published Oct 30, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-62902 was published Oct 27, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-12367 was published Sep 16, 2025
An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows... High Unreviewed
CVE-2025-4235 was published Sep 12, 2025
An open database issue exists in the affected product and version. The security issue stems from... High Unreviewed
CVE-2025-9364 was published Sep 9, 2025
Unauthorized users can access INFINITT PACS System Manager without proper authorization, which... High Unreviewed
CVE-2025-27721 was published Aug 21, 2025
An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17. High Unreviewed
CVE-2024-51770 was published Jul 14, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-31045 was published Jun 9, 2025
The affected products could allow an unauthenticated attacker to access system information that... High Unreviewed
CVE-2025-4364 was published May 20, 2025
Vestel AC Charger version 3.75.0 contains a vulnerability that could enable an attacker to... High Unreviewed
CVE-2025-3606 was published Apr 25, 2025
ses's global contour bindings leak into Compartment lexical scope High
CVE-2025-32792 was published for ses (npm) Apr 18, 2025
mingijunggrape michaelfig
mhofman kriskowal
Credited to mingijunggrape, michaelfig, mhofman, and kriskowal
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-26730 was published Apr 16, 2025
Vulnerability in the Oracle Hospitality Simphony product of Oracle Food and Beverage Applications... High Unreviewed
CVE-2025-30686 was published Apr 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database