GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

28 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files Moderate Unreviewed

CVE-2025-57734 was published Aug 20, 2025

By using the "uscan" protocol provided by the eSCL specification, an attacker can discover the... Moderate Unreviewed

CVE-2025-8452 was published Aug 12, 2025

An unauthenticated attacker who can access either the HTTP service (TCP port 80), the HTTPS... Moderate Unreviewed

CVE-2024-51977 was published Jun 26, 2025

In devinfo, there is a possible information disclosure due to a missing SELinux policy. This... Moderate Unreviewed

CVE-2025-20665 was published May 5, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-31421 was published Apr 4, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-31558 was published Apr 3, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-31550 was published Apr 1, 2025

yimioa before v2024.07.04 was discovered to contain an information disclosure vulnerability via... Moderate Unreviewed

CVE-2025-25586 was published Mar 18, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-22633 was published Feb 24, 2025

An information exposure through log file vulnerability exists in Brocade SANnav before Brocade... Moderate Unreviewed

CVE-2022-43933 was published Feb 4, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-24689 was published Jan 27, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-22773 was published Jan 15, 2025

During MegaBIP installation process, a user is encouraged to change a default path to... Moderate Unreviewed

CVE-2024-6880 was published Jan 10, 2025

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.4 prior to 17.5.1... Moderate Unreviewed

CVE-2025-0194 was published Jan 8, 2025

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in... Moderate Unreviewed

CVE-2025-22306 was published Jan 7, 2025

An attacker authenticated as an administrator can use an exposed webservice to create a PDF with... Moderate Unreviewed

CVE-2024-47580 was published Dec 10, 2024

An attacker authenticated as an administrator can use an exposed webservice to upload or download... Moderate Unreviewed

CVE-2024-47579 was published Dec 10, 2024

A vulnerability was found in 3Scale. There is no auth mechanism to see a PDF invoice of a... Moderate Unreviewed

CVE-2024-9671 was published Oct 9, 2024

On Windows systems, the Arc configuration files resulted to be world-readable. This can lead... Moderate Unreviewed

CVE-2023-5937 was published May 15, 2024

A vulnerability has been identified in SIMATIC PCS neo (Administration Console) V4.0 (All... Moderate Unreviewed

CVE-2023-38558 was published Sep 14, 2023

Due to an out-of-date dependency in the “Fusion File Manager” component accessible through the... Moderate Unreviewed

CVE-2023-4480 was published Sep 5, 2023

A vulnerability in the web server functionality of Cisco Enterprise Network Functions... Moderate Unreviewed

CVE-2019-12623 was published May 24, 2022

cPanel before 70.0.23 exposes Apache HTTP Server logs after creation of certain domains (SEC-406). Moderate Unreviewed

CVE-2018-20932 was published May 24, 2022

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the... Moderate Unreviewed

CVE-2023-4933 was published Oct 16, 2023

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified... Moderate Unreviewed

CVE-2024-0191 was published Jan 2, 2024

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

28 advisories