Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

9,809 advisories

Loading
YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster... Moderate Unreviewed
CVE-2025-8866 was published Aug 11, 2025
A vulnerability was identified in WuKongOpenSource WukongCRM 11.0. This affects an unknown part... Moderate Unreviewed
CVE-2025-8852 was published Aug 11, 2025
A vulnerability has been found in zlt2000 microservices-platform up to 6.0.0 and classified as... Moderate Unreviewed
CVE-2025-8738 was published Aug 8, 2025
The AuthKit Remix Library renders sensitive auth data in HTML High
CVE-2025-55009 was published for @workos-inc/authkit-remix (npm) Aug 8, 2025
The AuthKit React Router Library rendered sensitive auth data in HTML High
CVE-2025-55008 was published for @workos-inc/authkit-react-router (npm) Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58257 was published Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58256 was published Aug 8, 2025
EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed
CVE-2024-58255 was published Aug 8, 2025
An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can... High Unreviewed
CVE-2025-46659 was published Aug 6, 2025
Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive... Low Unreviewed
CVE-2025-38746 was published Aug 6, 2025
An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Once access is gained either... Critical Unreviewed
CVE-2025-30127 was published Aug 6, 2025
Electrolink FM/DAB/TV Transmitter Web Management System Unauthorized access vulnerability via the... High Unreviewed
CVE-2025-51040 was published Aug 6, 2025
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-8620 was published Aug 6, 2025
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2025-46388 was published Aug 6, 2025
Vulnerability of insufficient information protection in the media library module. Impact:... Moderate Unreviewed
CVE-2025-54615 was published Aug 6, 2025
A vulnerability affecting the scanning module in Emsisoft Anti-Malware prior to 2024.12 allows... High Unreviewed
CVE-2025-29745 was published Aug 5, 2025
A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue... Moderate Unreviewed
CVE-2025-8548 was published Aug 5, 2025
A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-8525 was published Aug 4, 2025
A vulnerability classified as problematic has been found in givanz Vvveb up to 1.0.5. This... Moderate Unreviewed
CVE-2025-8519 was published Aug 4, 2025
A vulnerability was found in Intelbras InControl 2.21.60.9 and classified as problematic. This... Low Unreviewed
CVE-2025-8515 was published Aug 4, 2025
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get... Low Unreviewed
CVE-2025-23290 was published Aug 3, 2025
The BitFire Security – Firewall, WAF, Bot/Spam Blocker, Login Security plugin for WordPress is... Moderate Unreviewed
CVE-2025-6722 was published Aug 2, 2025
OpenSearch unauthorized data access on fields protected by field level security if field is a member of an object Moderate
GHSA-2rjv-cv85-xhgm was published for org.opensearch.plugin:opensearch-security (Maven) Aug 1, 2025
OpenSearch unauthorized data access on fields protected by field masking for fields of type ip, geo_point, geo_shape, xy_point, xy_shape Moderate
GHSA-rrmm-wq7q-h4v5 was published for org.opensearch.plugin:opensearch-security (Maven) Aug 1, 2025
The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... Moderate Unreviewed
CVE-2025-4523 was published Aug 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database