Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

127 advisories

Loading
Angular is Vulnerable to XSRF Token Leakage via Protocol-Relative URLs in Angular HTTP Client High
CVE-2025-66035 was published for @angular/common (npm) Nov 26, 2025
alan-agius4 AndrewKushnir
irsl hybrist AKiileX
Credited to alan-agius4, AndrewKushnir, irsl, hybrist, and AKiileX
The SureForms plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-12536 was published Nov 13, 2025
Files or Directories Accessible to External Parties, Exposure of Private Personal Information to... High Unreviewed
CVE-2025-11959 was published Nov 11, 2025
IBM Db2 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX... Moderate Unreviewed
CVE-2025-36131 was published Nov 7, 2025
A privacy issue was addressed by removing the vulnerable code. This issue is fixed in iOS 26.1... High Unreviewed
CVE-2025-43389 was published Nov 4, 2025
The issue was addressed by adding additional logic. This issue is fixed in watchOS 26.1, iOS 26.1... High Unreviewed
CVE-2025-43496 was published Nov 4, 2025
A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 26.1 and... High Unreviewed
CVE-2025-43439 was published Nov 4, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... High Unreviewed
CVE-2025-43399 was published Nov 4, 2025
HCL BigFix Query is affected by a sensitive information disclosure in the WebUI Query application... Moderate Unreviewed
CVE-2025-52602 was published Nov 5, 2025
This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and... High Unreviewed
CVE-2025-43227 was published Jul 30, 2025
A privacy issue was addressed with improved handling of user preferences. This issue is fixed in... Low Unreviewed
CVE-2024-23211 was published Jan 23, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2025-43469 was published Nov 4, 2025
A privacy issue was addressed with improved handling of user preferences. This issue is fixed in... High Unreviewed
CVE-2025-43500 was published Nov 4, 2025
This issue was addressed by restricting options offered on a locked device. This issue is fixed... High Unreviewed
CVE-2025-43452 was published Nov 4, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed
CVE-2025-43409 was published Nov 4, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed
CVE-2025-43405 was published Nov 4, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-40796 was published Jul 30, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-27881 was published Jul 30, 2024
This issue was addressed with improvements to the noise injection algorithm. This issue is fixed... Moderate Unreviewed
CVE-2024-27850 was published Jun 10, 2024
AsyncSSH Rogue Session Attack High
CVE-2023-46446 was published for asyncssh (pip) Nov 9, 2023
TrueSkrillor lambdafu
Credited to TrueSkrillor and lambdafu
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2025-43279 was published Sep 16, 2025
A configuration issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43310 was published Sep 16, 2025
This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and... Moderate Unreviewed
CVE-2025-31276 was published Jul 30, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2025-43357 was published Sep 16, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2025-43301 was published Sep 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database