GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,840

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

299 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56495 was published Feb 27, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56494 was published Feb 27, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56496 was published Feb 27, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56810 was published Feb 27, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56811 was published Feb 27, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56812 was published Feb 27, 2025

MET ONE 3400+ instruments running software v1.0.41 can, under rare conditions, temporarily store... Moderate Unreviewed

CVE-2025-0941 was published Feb 26, 2025

The C9 Blocks plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to,... Moderate Unreviewed

CVE-2024-13537 was published Feb 21, 2025

The Actionwear products sync plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2024-13535 was published Feb 18, 2025

The BigBuy Dropshipping Connector for WooCommerce plugin for WordPress is vulnerable to Full Path... Moderate Unreviewed

CVE-2024-13538 was published Feb 18, 2025

The WooODT Lite – Delivery & pickup date time location for WooCommerce plugin for WordPress is... Moderate Unreviewed

CVE-2024-13540 was published Feb 18, 2025

The AForms Eats plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to,... Moderate Unreviewed

CVE-2024-13539 was published Feb 12, 2025

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error... Low Unreviewed

CVE-2024-52611 was published Feb 11, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56467 was published Feb 6, 2025

IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information when a detailed... Moderate Unreviewed

CVE-2024-49798 was published Feb 6, 2025

IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote... Low Unreviewed

CVE-2024-45658 was published Feb 4, 2025

IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote... Moderate Unreviewed

CVE-2024-45659 was published Feb 4, 2025

VMware Aria Operations for Logs contains an information disclosure vulnerability. A malicious... High Unreviewed

CVE-2025-22218 was published Jan 30, 2025

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2024-35112 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2... Moderate Unreviewed

CVE-2023-38713 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0... Moderate Unreviewed

CVE-2023-38716 was published Jan 25, 2025

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information... Moderate Unreviewed

CVE-2024-35111 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2... Moderate Unreviewed

CVE-2023-38714 was published Jan 25, 2025

IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when... Moderate Unreviewed

CVE-2024-35134 was published Jan 25, 2025

Generation of Error Message Containing Sensitive Information vulnerability in David de Boer... Moderate Unreviewed

CVE-2025-24552 was published Jan 24, 2025

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

299 advisories