GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,775
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,080
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,225

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

198 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The YoSmart YoLink Smart Hub device 0382 exposes a UART debug interface. An attacker with direct... Low Unreviewed

CVE-2025-59447 was published Oct 6, 2025

Due to a lack of authentication, it is possible for an unauthenticated user to request data from... Moderate Unreviewed

CVE-2025-58579 was published Oct 6, 2025

Multiple endpoints with sensitive information do not require authentication, making the... Moderate Unreviewed

CVE-2025-58585 was published Oct 6, 2025

The application provides access to a login protected H2 database for caching purposes.... Moderate Unreviewed

CVE-2025-58583 was published Oct 6, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-60167 was published Sep 26, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-60119 was published Sep 26, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-60092 was published Sep 26, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-59582 was published Sep 22, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-58007 was published Sep 22, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Ays... Moderate Unreviewed

CVE-2025-58015 was published Sep 22, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-57937 was published Sep 22, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Nurul... Moderate Unreviewed

CVE-2025-57916 was published Sep 22, 2025

IBM Lakehouse (watsonx.data 2.2) could allow an authenticated user to obtain sensitive server... Moderate Unreviewed

CVE-2025-36146 was published Sep 18, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed

CVE-2024-12367 was published Sep 16, 2025

This issue was addressed by restricting options offered on a locked device. This issue is fixed... Moderate Unreviewed

CVE-2025-24133 was published Sep 16, 2025

An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows... High Unreviewed

CVE-2025-4235 was published Sep 12, 2025

Certain models of NVR developed by Digiever has an Exposure of Sensitive Information... Critical Unreviewed

CVE-2025-10264 was published Sep 12, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.1 before 18.1.6, 18.2... Moderate Unreviewed

CVE-2025-6769 was published Sep 12, 2025

An open database issue exists in the affected product and version. The security issue stems from... High Unreviewed

CVE-2025-9364 was published Sep 9, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Rami... Low Unreviewed

CVE-2025-58866 was published Sep 5, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-58797 was published Sep 5, 2025

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.7_1 and 6.2.0.0 through 6.2.0.4 and IBM... Low Unreviewed

CVE-2025-2667 was published Sep 4, 2025

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) 8.1 before 8.1.2.2 could allow an authenticated... Moderate Unreviewed

CVE-2025-36162 was published Sep 2, 2025

MacVim's configuration on macOS, specifically the presence of entitlement "com.apple.security.get... Moderate Unreviewed

CVE-2025-8597 was published Aug 26, 2025

Invoice Ninja's configuration on macOS, specifically the presence of entitlement "com.apple... Moderate Unreviewed

CVE-2025-8700 was published Aug 26, 2025

Previous 12…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

198 advisories