Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,894
Erlang
38
GitHub Actions
38
Go
2,556
Maven
5,000+
npm
4,228
NuGet
747
pip
4,000
Pub
12
RubyGems
953
Rust
1,041
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,715 advisories

Loading
Exposure of sensitive information to an unauthorized actor in Microsoft Failover Cluster Virtual... Moderate Unreviewed
CVE-2025-59260 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core... Moderate Unreviewed
CVE-2025-59211 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core... Moderate Unreviewed
CVE-2025-59209 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed
CVE-2025-59214 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows High Availability Services... Moderate Unreviewed
CVE-2025-59184 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed
CVE-2025-58739 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed
CVE-2025-59186 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Failover Cluster allows an... Moderate Unreviewed
CVE-2025-59188 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed
CVE-2025-55699 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed
CVE-2025-55683 was published Oct 14, 2025
Exposure of sensitive information to an unauthorized actor in Windows Cloud Files Mini Filter... Moderate Unreviewed
CVE-2025-55336 was published Oct 14, 2025
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet... Moderate Unreviewed
CVE-2025-59921 was published Oct 14, 2025
A vulnerability has been found in Tomofun Furbo 360 and Furbo Mini. The impacted element is an... Moderate Unreviewed
CVE-2025-11639 was published Oct 12, 2025
The Code Quality Control Tool plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2025-8484 was published Oct 11, 2025
The Trinity Audio – Text to Speech AI audio player to convert content into audio plugin for... Moderate Unreviewed
CVE-2025-9196 was published Oct 11, 2025
Identity authentication bypass vulnerability in the Gallery app. Successful exploitation of this... Moderate Unreviewed
CVE-2025-58278 was published Oct 11, 2025
Permission verification bypass vulnerability in the Camera app. Successful exploitation of this... Moderate Unreviewed
CVE-2025-58277 was published Oct 11, 2025
Rack has a Possible Information Disclosure Vulnerability Moderate
CVE-2025-61780 was published for rack (RubyGems) Oct 10, 2025
leahneukirchen jeremyevans
matthewd ioquatix
Credited to leahneukirchen, jeremyevans, matthewd, and ioquatix
Incorrect Permission Assignment for Critical Resource, Exposure of Sensitive Information to an... Moderate Unreviewed
CVE-2025-8886 was published Oct 10, 2025
Authorization Bypass Through User-Controlled Key, Missing Authorization, Exposure of Sensitive... Moderate Unreviewed
CVE-2025-8887 was published Oct 10, 2025
BBOT's git_clone.py can expose users' GitHub API keys to an attacker-controlled webserver Moderate
CVE-2025-10281 was published for bbot (pip) Oct 9, 2025
justinsteven liquidsec
Credited to justinsteven and liquidsec
A weakness has been identified in JhumanJ OpnForm up to 1.9.3. This affects an unknown function... Moderate Unreviewed
CVE-2025-11443 was published Oct 8, 2025
Successful exploitation of the vulnerability could allow an unauthenticated attacker to gain... Moderate Unreviewed
CVE-2025-48464 was published Oct 8, 2025
A security flaw has been discovered in kaifangqian kaifangqian-base up to... Moderate Unreviewed
CVE-2025-11406 was published Oct 7, 2025
When an error occurs in the application a full stacktrace is provided to the user. The... Moderate Unreviewed
CVE-2025-58581 was published Oct 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database