Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

31 advisories

Loading
Nagios XI versions prior to 2024R1.4.2 revealed API keys to users who were not authorized for API... High Unreviewed
CVE-2025-34283 was published Oct 31, 2025
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active... High Unreviewed
CVE-2024-13999 was published Oct 31, 2025
Nagios XI versions prior to 2024R1.1.2 may (confirmed in 2024R1.1 and 2024R1.1.1) disclose... High Unreviewed
CVE-2024-13995 was published Oct 31, 2025
Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing... High Unreviewed
CVE-2025-54459 was published Oct 30, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-62902 was published Oct 27, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-12367 was published Sep 16, 2025
An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows... High Unreviewed
CVE-2025-4235 was published Sep 12, 2025
An open database issue exists in the affected product and version. The security issue stems from... High Unreviewed
CVE-2025-9364 was published Sep 9, 2025
Unauthorized users can access INFINITT PACS System Manager without proper authorization, which... High Unreviewed
CVE-2025-27721 was published Aug 21, 2025
An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17. High Unreviewed
CVE-2024-51770 was published Jul 14, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-31045 was published Jun 9, 2025
The affected products could allow an unauthenticated attacker to access system information that... High Unreviewed
CVE-2025-4364 was published May 20, 2025
Vestel AC Charger version 3.75.0 contains a vulnerability that could enable an attacker to... High Unreviewed
CVE-2025-3606 was published Apr 25, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2025-26730 was published Apr 16, 2025
Vulnerability in the Oracle Hospitality Simphony product of Oracle Food and Beverage Applications... High Unreviewed
CVE-2025-30686 was published Apr 15, 2025
Information disclosure of authentication information in the specific service vulnerability exists... High Unreviewed
CVE-2025-27934 was published Apr 9, 2025
Information disclosure while creating MQ channels. High Unreviewed
CVE-2024-45549 was published Apr 7, 2025
An Exposure of Sensitive System Information to an Unauthorized Control Sphere and Initialization... High Unreviewed
CVE-2024-8313 was published Mar 25, 2025
A Local File Inclusion (LFI) vulnerability exists in the /load-workflow endpoint of modelscope... High Unreviewed
CVE-2024-8550 was published Feb 10, 2025
VMware Aria Operations contains an information disclosure vulnerability. A malicious user with... High Unreviewed
CVE-2025-22222 was published Jan 30, 2025
SAP BusinessObjects Business Intelligence Platform allows an unauthenticated attacker to perform... High Unreviewed
CVE-2025-0061 was published Jan 14, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-54279 was published Dec 16, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-50528 was published Nov 4, 2024
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-48024 was published Oct 17, 2024
A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM... High Unreviewed
CVE-2024-39675 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database