GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,935
Composer 5,069
Erlang 39
GitHub Actions 38
Go 2,726
Maven 6,143
npm 4,331
NuGet 763
pip 4,107
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,299

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

198 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Primakon Pi Portal 1.0.18 /api/v2/users endpoint is vulnerable to unauthorized data exposure due... Moderate Unreviewed

CVE-2025-64061 was published Nov 25, 2025

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0... Moderate Unreviewed

CVE-2025-36112 was published Nov 24, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-66056 was published Nov 21, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Craig... Moderate Unreviewed

CVE-2025-66059 was published Nov 21, 2025

IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response... Moderate Unreviewed

CVE-2025-36160 was published Nov 21, 2025

Vodafone H500s devices running firmware v3.5.10 (hardware model Sercomm VFH500) expose the WiFi... High Unreviewed

CVE-2022-4985 was published Nov 15, 2025

IQ-Support developed by IQ Service International has a Exposure of Sensitive Information... Moderate Unreviewed

CVE-2025-13160 was published Nov 14, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-64267 was published Nov 13, 2025

IBM OpenPages 9.0 and 9.1 is vulnerable to information disclosure of sensitive information due to... Moderate Unreviewed

CVE-2025-27368 was published Nov 12, 2025

Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions... High Unreviewed

CVE-2025-12779 was published Nov 6, 2025

Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose sensitive user... Moderate Unreviewed

CVE-2024-13998 was published Nov 4, 2025

Nagios XI versions prior to 2024R1.4.2 revealed API keys to users who were not authorized for API... High Unreviewed

CVE-2025-34283 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active... High Unreviewed

CVE-2024-13999 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.1.2 may (confirmed in 2024R1.1 and 2024R1.1.1) disclose... High Unreviewed

CVE-2024-13995 was published Oct 31, 2025

Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing... High Unreviewed

CVE-2025-54459 was published Oct 30, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-64228 was published Oct 29, 2025

A GUI dialog of an application allows to view what files are in the file system without proper... Moderate Unreviewed

CVE-2025-43024 was published Oct 28, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed

CVE-2025-62902 was published Oct 27, 2025

Tibbo AggreGate Network Manager < 6.40.05 exposes sensitive system information through an... Moderate Unreviewed

CVE-2025-34156 was published Oct 23, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere (CWE-497) in the... Critical Unreviewed

CVE-2025-47699 was published Oct 23, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-59575 was published Oct 22, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-52752 was published Oct 22, 2025

HCL Unica 12.1.10 can expose sensitive system information. An attacker could use this... Moderate Unreviewed

CVE-2025-52616 was published Oct 12, 2025

An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an... Moderate Unreviewed

CVE-2025-4614 was published Oct 9, 2025

Nagios Log Server before 2024R1.3.2 allows authenticated users to retrieve cleartext... Critical Unreviewed

CVE-2025-44823 was published Oct 7, 2025

Previous1…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

198 advisories