GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,960

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

231 advisories

Filter by severity

Sort by

Least recently updated

User enumeration is found in PHPJabbers Document Creator v1.0. This issue occurs during password... Critical Unreviewed

CVE-2023-40758 was published Aug 28, 2023

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during... Critical Unreviewed

CVE-2023-40761 was published Aug 28, 2023

IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow... Moderate Unreviewed

CVE-2023-26272 was published Aug 28, 2023

e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated... Moderate Unreviewed

CVE-2023-32755 was published Aug 25, 2023

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a remote attacker to obtain system... Moderate Unreviewed

CVE-2023-35009 was published Aug 17, 2023

An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8,... Moderate Unreviewed

CVE-2023-1210 was published Aug 2, 2023

Brocade Fabric OS before Brocade Fabric OS v9.1.1c, v9.2.0 contains a vulnerability when using... Moderate Unreviewed

CVE-2023-31429 was published Aug 1, 2023

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when... Moderate Unreviewed

CVE-2020-4868 was published Jul 31, 2023

Server information leak of configuration data when an error is generated in response to a... High Unreviewed

CVE-2023-25948 was published Jul 13, 2023

An information disclosure issue in GitLab CE/EE affecting all versions from 16.0 prior to 16.0.6,... Moderate Unreviewed

CVE-2023-3362 was published Jul 13, 2023

MISP 2.4.172 mishandles different certificate file extensions in server sync. An attacker can... High Unreviewed

CVE-2023-37306 was published Jun 30, 2023

In JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the... Low Unreviewed

CVE-2023-34339 was published Jun 1, 2023

IBM MQ 8.0, 9.0, and 9.1 could allow a local user to obtain sensitive credential information when... Moderate Unreviewed

CVE-2023-28514 was published May 19, 2023

In affected versions of Octopus Deploy it is possible to discover network details via error message Moderate Unreviewed

CVE-2022-4870 was published May 18, 2023

IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 could disclose sensitive information in an error... Moderate Unreviewed

CVE-2023-27860 was published Apr 27, 2023

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.0 and 9.3.0.2,... Moderate Unreviewed

CVE-2022-4770 was published Apr 3, 2023

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.0 and 9.3.0.2,... Moderate Unreviewed

CVE-2022-4769 was published Apr 3, 2023

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an... Moderate Unreviewed

CVE-2023-25687 was published Mar 21, 2023

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7... High Unreviewed

CVE-2020-5026 was published Mar 2, 2023

SonicWall Email Security contains a vulnerability that could permit a remote unauthenticated... Moderate Unreviewed

CVE-2023-0655 was published Feb 14, 2023

Wyse Management Suite Repository 3.8 and below contain an information disclosure vulnerability. A... Moderate Unreviewed

CVE-2022-46675 was published Feb 11, 2023

Alotcer - AR7088H-A firmware version 16.10.3 Information disclosure. Unspecified error message... Moderate Unreviewed

CVE-2022-46371 was published Jan 12, 2023

IBM Security Verify Governance, Identity Manager 10.01 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2022-22449 was published Dec 24, 2022

When importing resources using Web Workers, error messages would distinguish the difference... Moderate Unreviewed

CVE-2022-22760 was published Dec 22, 2022

Generation of Error Message Containing Sensitive Information vulnerability in Hitachi JP1... Low Unreviewed

CVE-2022-34881 was published Dec 6, 2022

Previous 1 2 3 4 5 6 … 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

231 advisories