Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

315 advisories

Loading
Pydio Cells before 1.5.0, when supplied with a Name field in an unexpected Unicode format, fails... Moderate Unreviewed
CVE-2019-12903 was published May 24, 2022
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.4, when ... Moderate Unreviewed
CVE-2019-19342 was published May 24, 2022
Inappropriate implementation in accessibility in Google Chrome prior to 74.0.3729.108 allowed a... Moderate Unreviewed
CVE-2020-6503 was published May 24, 2022
An issue has been discovered in GitLab affecting all versions starting with 7.1. A member of a... Low Unreviewed
CVE-2021-22193 was published May 24, 2022
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 could disclose sensitive information in an error... Moderate Unreviewed
CVE-2023-27860 was published Apr 27, 2023
In affected versions of Octopus Deploy it is possible to discover network details via error message Moderate Unreviewed
CVE-2022-4870 was published May 18, 2023
IBM MQ 8.0, 9.0, and 9.1 could allow a local user to obtain sensitive credential information when... Moderate Unreviewed
CVE-2023-28514 was published May 19, 2023
In JetBrains Ktor before 2.3.1 headers containing authentication data could be added to the... Low Unreviewed
CVE-2023-34339 was published Jun 1, 2023
MISP 2.4.172 mishandles different certificate file extensions in server sync. An attacker can... High Unreviewed
CVE-2023-37306 was published Jun 30, 2023
Server information leak of configuration data when an error is generated in response to a... High Unreviewed
CVE-2023-25948 was published Jul 13, 2023
IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when... Moderate Unreviewed
CVE-2020-4868 was published Jul 31, 2023
e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated... Moderate Unreviewed
CVE-2023-32755 was published Aug 25, 2023
IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow... Moderate Unreviewed
CVE-2023-26272 was published Aug 28, 2023
User enumeration is found in PHPJabbers Document Creator v1.0. This issue occurs during password... Critical Unreviewed
CVE-2023-40758 was published Aug 28, 2023
User enumeration is found in PHPJabbers Food Delivery Script v3.1. This issue occurs during... Critical Unreviewed
CVE-2023-40757 was published Aug 28, 2023
User enumeration is found in PHPJabbers Taxi Booking Script v2.0. This issue occurs during... Critical Unreviewed
CVE-2023-40763 was published Aug 28, 2023
User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during... Critical Unreviewed
CVE-2023-40761 was published Aug 28, 2023
User enumeration is found in PHP Jabbers Hotel Booking System v4.0. This issue occurs during... Critical Unreviewed
CVE-2023-40760 was published Aug 28, 2023
User enumeration is found in PHPJabbers Fundraising Script v1.0. This issue occurs during... Critical Unreviewed
CVE-2023-40762 was published Aug 28, 2023
User enumeration is found in PHP Jabbers Car Rental Script v3.0. This issue occurs during... Critical Unreviewed
CVE-2023-40764 was published Aug 28, 2023
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during... Critical Unreviewed
CVE-2023-40767 was published Aug 28, 2023
User enumeration is found in in PHPJabbers Ticket Support Script v3.2. This issue occurs during... Critical Unreviewed
CVE-2023-40766 was published Aug 28, 2023
IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain... Moderate Unreviewed
CVE-2023-33834 was published Aug 31, 2023
IBM Security Verify Information Queue 10.0.4 and 10.0.5 could allow a remote attacker to obtain... High Unreviewed
CVE-2023-33835 was published Aug 31, 2023
An information disclosure vulnerability exists in the OAS Engine configuration management... Moderate Unreviewed
CVE-2023-35124 was published Sep 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database