GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
18 advisories
Filter by severity
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Low
Unreviewed
CVE-2025-43357
was published
Sep 16, 2025
A privacy issue was addressed with improved handling of user preferences. This issue is fixed in...
Low
Unreviewed
CVE-2024-23211
was published
Jan 23, 2024
Keycloak: Information disclosure of disabled user attributes via administrative endpoint
Low
CVE-2026-3911
was published
for
org.keycloak:keycloak-services
(Maven)
Mar 11, 2026
Sensitive information disclosure due to excessive collection of system information. The following...
Low
Unreviewed
CVE-2023-48680
was published
Feb 27, 2024
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.
Since...
Low
Unreviewed
CVE-2025-66605
was published
Feb 9, 2026
Under specific conditions, a malicious webpage may trigger autofill population after two...
Low
Unreviewed
CVE-2026-0102
was published
Feb 17, 2026
In mObywatel iOS application an unauthorized user can use the App Switcher to view the account...
Low
Unreviewed
CVE-2025-11598
was published
Feb 3, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.3 before 18.5.5, 18...
Low
Unreviewed
CVE-2025-3950
was published
Jan 9, 2026
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2025-43301
was published
Sep 16, 2025
Zabbix API user.get returns all users that share common group with the calling user. This...
Low
Unreviewed
CVE-2024-42325
was published
Apr 2, 2025
In Gemini iOS, when a user shared a snippet of a conversation, it would share the entire...
Low
Unreviewed
CVE-2025-5009
was published
Oct 8, 2025
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition...
Low
Unreviewed
CVE-2025-1939
was published
Mar 4, 2025
Weblate exposes personal IP address via e-mail
Low
CVE-2025-49134
was published
for
weblate
(pip)
Jun 16, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2023-42830
was published
Jan 11, 2024
Forwarding of confidentials headers to third parties in fluture-node
Low
CVE-2022-24719
was published
for
fluture-node
(npm)
Mar 1, 2022
Sensitive information disclosure due to excessive collection of system information. The following...
Low
Unreviewed
CVE-2023-44213
was published
Oct 6, 2023
IBM InfoSphere Information Server 11.7 could disclose sensitive user information to another user...
Low
Unreviewed
CVE-2024-37533
was published
Jul 24, 2024
Unauthenticated user can have information about hidden users on subwikis through uorgsuggest.vm
Low
CVE-2023-29203
was published
for
org.xwiki.platform:xwiki-platform-web-templates
(Maven)
Apr 12, 2023
ProTip!
Advisories are also available from the
GraphQL API