Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

150 advisories

Loading
Users’ product account authentication data was stored in clear text in The Genie Company Aladdin... Moderate Unreviewed
CVE-2023-5879 was published Jan 3, 2024
The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-3678 was published Apr 26, 2024
`bhyveload -h <host-path>` may be used to grant loader access to the <host-path> directory tree... Moderate Unreviewed
CVE-2024-25940 was published Feb 15, 2024
The TeleMessage service through 2025-05-05 implements authentication through a long-lived... Moderate Unreviewed
CVE-2025-48929 was published May 28, 2025
Serialized configuration information may be disclosed during device commissioning while using... Moderate Unreviewed
CVE-2024-13954 was published May 22, 2025
Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4... Moderate Unreviewed
CVE-2022-28170 was published Oct 26, 2022
An issue existed with the file paths used to store website data. The issue was resolved by... Moderate Unreviewed
CVE-2022-32833 was published Dec 15, 2022
SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where... Moderate Unreviewed
CVE-2017-16560 was published May 13, 2022
During iframe navigation, certain pages did not have their FeaturePolicy fully initialized... Moderate Unreviewed
CVE-2022-40959 was published Dec 22, 2022
CWE-922: Insecure Storage of Sensitive Information vulnerability exists that could potentially... Moderate Unreviewed
CVE-2025-2440 was published Apr 9, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2025-24138 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.2, macOS... Moderate Unreviewed
CVE-2024-54547 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2024-54541 was published Jan 28, 2025
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24108 was published Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24103 was published Jan 28, 2025
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this... Moderate Unreviewed
CVE-2025-2489 was published Mar 18, 2025
An information disclosure issue was addressed with improved privacy controls. This issue is fixed... Moderate Unreviewed
CVE-2025-24134 was published Jan 28, 2025
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in... Moderate Unreviewed
CVE-2023-23522 was published Feb 27, 2023
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2025-21098 was published Mar 4, 2025
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS... Moderate Unreviewed
CVE-2025-24149 was published Jan 28, 2025
The connection string visible to users with access to FRSCore database on Foreseer Reporting... Moderate Unreviewed
CVE-2025-22492 was published Feb 28, 2025
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows... Moderate Unreviewed
CVE-2023-6253 was published Nov 22, 2023
Inclusion of sensitive information in test code in softsim TA prior to SMR Jan-2025 Release 1... Moderate Unreviewed
CVE-2025-20886 was published Feb 4, 2025
The WP Meta SEO plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2023-6962 was published May 2, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-54549 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database