GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,634
NuGet
638
pip
3,250
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
155 advisories
Filter by severity
An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 15...
Moderate
Unreviewed
CVE-2024-5435
was published
Sep 12, 2024
A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. It...
Moderate
Unreviewed
CVE-2024-8571
was published
Sep 8, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0...
Moderate
Unreviewed
CVE-2023-47728
was published
Aug 16, 2024
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2024-39751
was published
Aug 6, 2024
IBM Sterling Partner Engagement Manager 6.2.2 could allow a local attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2022-35640
was published
Jul 17, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to...
Moderate
Unreviewed
CVE-2024-39737
was published
Jul 15, 2024
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2024-35119
was published
Jun 30, 2024
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2023-50953
was published
Jun 30, 2024
IBM MQ 9.3 LTS and 9.3 CD could allow a remote attacker to obtain sensitive information when a...
Moderate
Unreviewed
CVE-2024-35156
was published
Jun 29, 2024
IBM MQ Console 9.3 LTS and 9.3 CD could disclose could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2024-35155
was published
Jun 28, 2024
An issue was discovered in Italtel Embrace 1.6.4. The server does not properly handle application...
Moderate
Unreviewed
CVE-2024-31844
was published
May 21, 2024
A vulnerability was found in Nway Pro 9. It has been rated as problematic. Affected by this issue...
Moderate
Unreviewed
CVE-2024-2009
was published
Feb 29, 2024
In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the affected product...
Moderate
Unreviewed
CVE-2024-21866
was published
Feb 2, 2024
An email address enumeration vulnerability exists in the password reset function of SEO Panel...
Moderate
Unreviewed
CVE-2024-22646
was published
Jan 30, 2024
A Missing Authentication for Critical Function vulnerability combined with a Generation of Error...
Moderate
Unreviewed
CVE-2024-21619
was published
Jan 26, 2024
Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device...
Moderate
Unreviewed
CVE-2023-49107
was published
Jan 16, 2024
Windows TCP/IP Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-21313
was published
Jan 9, 2024
HCL Launch could allow a remote attacker to obtain sensitive information when a detailed...
Moderate
Unreviewed
CVE-2023-45701
was published
Dec 28, 2023
ONTAP Mediator versions prior to 1.7 are susceptible to a
vulnerability that can allow an...
Moderate
Unreviewed
CVE-2023-27319
was published
Dec 22, 2023
IBM Security Guardium Key Lifecycle Manager 4.3 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2023-47703
was published
Dec 20, 2023
IBM UrbanCode Deploy (UCD) 7.1 through 7.1.2.14, 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2...
Moderate
Unreviewed
CVE-2023-42013
was published
Dec 20, 2023
Due to improper error handling, a REST API resource could expose a server side error containing...
Moderate
Unreviewed
CVE-2023-6839
was published
Dec 15, 2023
Kaifa Technology WebITR is an online attendance system. A remote attacker with regular user...
Moderate
Unreviewed
CVE-2023-48393
was published
Dec 15, 2023
IBM System Storage Virtualization Engine TS7700 3957-VEC, 3948-VED and 3957-VEC could allow a...
Moderate
Unreviewed
CVE-2023-49878
was published
Dec 13, 2023
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2023-43021
was published
Dec 1, 2023
ProTip!
Advisories are also available from the
GraphQL API