GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,499
Composer 4,829
Erlang 36
GitHub Actions 33
Go 2,446
Maven 5,843
npm 4,065
NuGet 723
pip 3,866
Pub 12
RubyGems 943
Rust 1,009
Swift 39

Unreviewed advisories

All unreviewed 266,140

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

9,754 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The AuthKit Remix Library renders sensitive auth data in HTML High

CVE-2025-55009 was published for @workos-inc/authkit-remix (npm) Aug 8, 2025

The AuthKit React Router Library rendered sensitive auth data in HTML High

CVE-2025-55008 was published for @workos-inc/authkit-react-router (npm) Aug 8, 2025

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2024-58256 was published Aug 8, 2025

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2024-58255 was published Aug 8, 2025

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2024-58257 was published Aug 8, 2025

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive... Low Unreviewed

CVE-2025-38746 was published Aug 6, 2025

An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can... High Unreviewed

CVE-2025-46659 was published Aug 6, 2025

An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Once access is gained either... Critical Unreviewed

CVE-2025-30127 was published Aug 6, 2025

Electrolink FM/DAB/TV Transmitter Web Management System Unauthorized access vulnerability via the... High Unreviewed

CVE-2025-51040 was published Aug 6, 2025

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed

CVE-2025-46388 was published Aug 6, 2025

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-8620 was published Aug 6, 2025

Vulnerability of insufficient information protection in the media library module. Impact:... Moderate Unreviewed

CVE-2025-54615 was published Aug 6, 2025

A vulnerability affecting the scanning module in Emsisoft Anti-Malware prior to 2024.12 allows... High Unreviewed

CVE-2025-29745 was published Aug 5, 2025

A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue... Moderate Unreviewed

CVE-2025-8548 was published Aug 5, 2025

A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic.... Moderate Unreviewed

CVE-2025-8525 was published Aug 4, 2025

A vulnerability classified as problematic has been found in givanz Vvveb up to 1.0.5. This... Moderate Unreviewed

CVE-2025-8519 was published Aug 4, 2025

A vulnerability was found in Intelbras InControl 2.21.60.9 and classified as problematic. This... Low Unreviewed

CVE-2025-8515 was published Aug 4, 2025

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get... Low Unreviewed

CVE-2025-23290 was published Aug 3, 2025

The BitFire Security – Firewall, WAF, Bot/Spam Blocker, Login Security plugin for WordPress is... Moderate Unreviewed

CVE-2025-6722 was published Aug 2, 2025

OpenSearch unauthorized data access on fields protected by field level security if field is a member of an object Moderate

GHSA-2rjv-cv85-xhgm was published for org.opensearch.plugin:opensearch-security (Maven) Aug 1, 2025

OpenSearch unauthorized data access on fields protected by field masking for fields of type ip, geo_point, geo_shape, xy_point, xy_shape Moderate

GHSA-rrmm-wq7q-h4v5 was published for org.opensearch.plugin:opensearch-security (Maven) Aug 1, 2025

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... Moderate Unreviewed

CVE-2025-4523 was published Aug 1, 2025

An issue in Aver PTC310UV2 v.0.1.0000.59 allows a remote attacker to obtain sensitive information... High Unreviewed

CVE-2025-45620 was published Jul 30, 2025

GitProxy Hidden Commits Injection High

CVE-2025-54586 was published for @finos/git-proxy (npm) Jul 30, 2025

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non... Moderate Unreviewed

CVE-2025-43018 was published Jul 30, 2025

Previous 1 2 3 4 5 … 390 391 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,754 advisories