Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,691
Erlang
34
GitHub Actions
27
Go
2,276
Maven
5,000+
npm
3,931
NuGet
708
pip
3,699
Pub
12
RubyGems
919
Rust
957
Swift
38
Unreviewed advisories
All unreviewed
5,000+

9,527 advisories

Loading
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Moderate Unreviewed
CVE-2025-22895 was published May 13, 2025
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Moderate Unreviewed
CVE-2025-20624 was published May 13, 2025
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Moderate Unreviewed
CVE-2025-20611 was published May 13, 2025
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Moderate Unreviewed
CVE-2025-20013 was published May 13, 2025
Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Low Unreviewed
CVE-2025-20030 was published May 13, 2025
Insufficient granularity of access control in Visual Studio allows an authorized attacker to... Moderate Unreviewed
CVE-2025-32703 was published May 13, 2025
An information disclosure issue was addressed with improved privacy controls. This issue is fixed... Moderate Unreviewed
CVE-2025-31236 was published May 13, 2025
The issue was addressed with improved handling of caches. This issue is fixed in macOS Sequoia 15... High Unreviewed
CVE-2025-31256 was published May 13, 2025
A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 18.5 and... High Unreviewed
CVE-2025-31225 was published May 13, 2025
A privacy issue was addressed by removing sensitive data. This issue is fixed in iPadOS 17.7.7,... Moderate Unreviewed
CVE-2025-31220 was published May 13, 2025
A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management... Moderate Unreviewed
CVE-2025-4536 was published May 11, 2025
A vulnerability, which was classified as problematic, was found in Gosuncn Technology Group Audio... Moderate Unreviewed
CVE-2025-4535 was published May 11, 2025
A vulnerability, which was classified as problematic, was found in Dígitro NGC Explorer 3.44.15.... Moderate Unreviewed
CVE-2025-4526 was published May 11, 2025
A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an... Moderate Unreviewed
CVE-2025-20221 was published May 7, 2025
The Download Manager and Payment Form WordPress Plugin – WP SmartPay plugin for WordPress is... Moderate Unreviewed
CVE-2025-3851 was published May 7, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Crestron Automate VX... Moderate Unreviewed
CVE-2025-47417 was published May 6, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Crestron Automate VX... Moderate Unreviewed
CVE-2025-47418 was published May 6, 2025
Out-of-bounds data read vulnerability in the authorization module Impact: Successful exploitation... Moderate Unreviewed
CVE-2025-46591 was published May 6, 2025
Vulnerability of insufficient information protection in the media library module Impact:... Moderate Unreviewed
CVE-2024-58252 was published May 6, 2025
Keystone has an unintended `isFilterable` bypass that can be used as an oracle to match hidden fields Low
CVE-2025-46720 was published for @keystone-6/core (npm) May 5, 2025
emmatown dcousens
A vulnerability, which was classified as problematic, was found in Shenzhen Sixun Software Sixun... Moderate Unreviewed
CVE-2025-4281 was published May 5, 2025
A vulnerability was found in TOTOLINK A720R 4.1.5cu.374. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-4270 was published May 5, 2025
A vulnerability was found in TOTOLINK A720R 4.1.5cu.374. It has been declared as problematic.... Moderate Unreviewed
CVE-2025-4271 was published May 5, 2025
The Database Toolset plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-4222 was published May 3, 2025
Information Disclosure via Flags override link Moderate
CVE-2025-46332 was published for @vercel/flags (npm) May 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database