GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,096
Composer 5,762
Erlang 55
GitHub Actions 50
Go 3,722
Maven 6,532
npm 6,035
NuGet 935
pip 4,946
Pub 13
RubyGems 1,055
Rust 1,338
Swift 54

Unreviewed advisories

All unreviewed 300,983

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

150 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A privacy issue was addressed with improved handling of user preferences. This issue is fixed in... High Unreviewed

CVE-2025-43500 was published Nov 4, 2025

The issue was addressed by adding additional logic. This issue is fixed in watchOS 26.1, iOS 26.1... High Unreviewed

CVE-2025-43496 was published Nov 4, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-43469 was published Nov 4, 2025

This issue was addressed by restricting options offered on a locked device. This issue is fixed... High Unreviewed

CVE-2025-43452 was published Nov 4, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed

CVE-2025-43409 was published Nov 4, 2025

A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 26.1 and... High Unreviewed

CVE-2025-43439 was published Nov 4, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed

CVE-2025-43405 was published Nov 4, 2025

A privacy issue was addressed by removing the vulnerable code. This issue is fixed in iOS 26.1... High Unreviewed

CVE-2025-43389 was published Nov 4, 2025

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... High Unreviewed

CVE-2025-43399 was published Nov 4, 2025

Exposure of Private Personal Information to an Unauthorized Actor (CWE-359) in the Command Centre... Moderate Unreviewed

CVE-2025-35981 was published Oct 23, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 has a Global... Moderate Unreviewed

CVE-2025-62644 was published Oct 17, 2025

An Exposure of Private Personal Information ('Privacy Violation') vulnerability [CWE-359] in... Moderate Unreviewed

CVE-2025-53950 was published Oct 16, 2025

In Gemini iOS, when a user shared a snippet of a conversation, it would share the entire... Low Unreviewed

CVE-2025-5009 was published Oct 8, 2025

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing... Moderate Unreviewed

CVE-2025-10859 was published Sep 30, 2025

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed

CVE-2025-43357 was published Sep 16, 2025

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43310 was published Sep 16, 2025

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2025-43279 was published Sep 16, 2025

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed

CVE-2025-43301 was published Sep 16, 2025

Presta Shop vulnerable to email enumeration Moderate

CVE-2025-51586 was published for prestashop/prestashop (Composer) Sep 4, 2025

A low-privileged remote attacker can obtain the username of another registered Sunny Portal user... Moderate Unreviewed

CVE-2025-41685 was published Aug 19, 2025

Exposure of private personal information to an unauthorized actor in Azure Stack allows an... Moderate Unreviewed

CVE-2025-53765 was published Aug 12, 2025

XWiki exposes passwords and emails stored in fields not named password/email in xml.vm High

CVE-2025-54125 was published for org.xwiki.platform:xwiki-platform-legacy-oldcore (Maven) Aug 5, 2025

XWiki leaks password hashes and other accessible password properties High

CVE-2025-54124 was published for org.xwiki.platform:xwiki-platform-legacy-oldcore (Maven) Aug 5, 2025

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed

CVE-2025-43259 was published Jul 30, 2025

This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and... High Unreviewed

CVE-2025-43227 was published Jul 30, 2025

Previous 12…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

150 advisories