GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,684

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

394 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2021-20499 was published May 24, 2022

IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2021-20523 was published May 24, 2022

IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote... Moderate Unreviewed

CVE-2021-20430 was published May 24, 2022

IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote... Moderate Unreviewed

CVE-2021-29766 was published May 24, 2022

IBM i2 Analyst's Notebook Premium 9.2.0, 9.2.1, and 9.2.2 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2021-29767 was published May 24, 2022

IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2021-29784 was published May 24, 2022

In SapphireIMS 4097_1, it is possible to guess the registered/active usernames of the software... High Unreviewed

CVE-2017-16629 was published May 24, 2022

A verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private... Moderate Unreviewed

CVE-2021-22249 was published May 24, 2022

In Apache Ofbiz, versions v17.12.01 to v17.12.07 implement a try catch exception to handle errors... High Unreviewed

CVE-2021-25958 was published May 24, 2022

The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker... Moderate Unreviewed

CVE-2021-35947 was published May 24, 2022

IBM Security Secret Server up to 11.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2021-20508 was published May 24, 2022

IBM Edge 4.2 could reveal sensitive version information about the server from error pages that... Moderate Unreviewed

CVE-2020-4941 was published May 24, 2022

IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information when a... Moderate Unreviewed

CVE-2021-20377 was published May 24, 2022

IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2021-20485 was published May 24, 2022

IBM Sterling File Gateway 6.0.0.0 through 6.1.1.0 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2021-20552 was published May 24, 2022

/way4acs/enroll in OpenWay WAY4 ACS before 1.2.278-2693 allows unauthenticated attackers to... Moderate Unreviewed

CVE-2021-35060 was published May 24, 2022

A vulnerability in the web-based dashboard of Cisco Umbrella could allow an authenticated, remote... Moderate Unreviewed

CVE-2021-40126 was published May 24, 2022

Stimulsoft (aka Stimulsoft Reports) 2013.1.1600.0, when Compilation Mode is used, allows an... Critical Unreviewed

CVE-2021-42777 was published Oct 29, 2022

IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2021-38981 was published May 24, 2022

An information disclosure vulnerability was discovered in glusterfs server. An attacker could... Moderate Unreviewed

CVE-2018-10913 was published Apr 30, 2022

Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure... Moderate Unreviewed

CVE-2020-27015 was published May 24, 2022

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to... Moderate Unreviewed

CVE-2000-1191 was published Apr 30, 2022

IBM Security Verify Governance, Identity Manager 10.01 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2022-22449 was published Dec 24, 2022

IBM Sterling B2B Integrator 6.0.0.0 and 6.0.0.1 reveals sensitive information from a stack trace... Moderate Unreviewed

CVE-2019-4377 was published May 24, 2022

Alotcer - AR7088H-A firmware version 16.10.3 Information disclosure. Unspecified error message... Moderate Unreviewed

CVE-2022-46371 was published Jan 12, 2023

Previous 1 2 3 4 5 6 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

394 advisories