GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,682

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

299 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error... Critical Unreviewed

CVE-2025-46658 was published Aug 5, 2025

loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the... Moderate Unreviewed

CVE-2025-47813 was published Jul 10, 2025

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2025-36090 was published Jul 10, 2025

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-37524 was published Jul 10, 2025

Improper error handling vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter.... Moderate Unreviewed

CVE-2025-40718 was published Jul 8, 2025

In HotelDruid 3.0.7, an unauthenticated attacker can exploit verbose SQL error messages on creadb... High Unreviewed

CVE-2025-44203 was published Jun 20, 2025

IBM Verify Identity Access Digital Credentials 24.06 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-56342 was published Jun 6, 2025

IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a... Moderate Unreviewed

CVE-2025-25025 was published May 28, 2025

User enumeration vulnerability in M3M Printer Server Web. This issue occurs during user... Moderate Unreviewed

CVE-2025-40653 was published May 26, 2025

Mailform Pro CGI prior to 4.3.4 generates error messages containing sensitive information, which... Moderate Unreviewed

CVE-2025-41441 was published May 26, 2025

An administrator could discover another account's credentials. Moderate Unreviewed

CVE-2025-46746 was published May 12, 2025

When a Web User without Create permission on subfolders attempts to upload a file to a non... Low Unreviewed

CVE-2025-0049 was published Apr 28, 2025

There is an information disclosure vulnerability in the GoldenDB database product. Attackers can... Moderate Unreviewed

CVE-2025-46575 was published Apr 27, 2025

IBM InfoSphere Information 11.7 Server authenticated user to obtain sensitive information when a... Moderate Unreviewed

CVE-2025-25045 was published Apr 24, 2025

A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to... Moderate Unreviewed

CVE-2025-20150 was published Apr 16, 2025

An issue has been discovered in GitLab EE affecting all versions from 17.1 before 17.8.7, 17.9... Moderate Unreviewed

CVE-2024-11129 was published Apr 10, 2025

Generation of Error Message Containing Sensitive Information vulnerability in vcita Online... Moderate Unreviewed

CVE-2025-32238 was published Apr 4, 2025

HCL Traveler generates some error messages that provide detailed information about errors and... Moderate Unreviewed

CVE-2025-0279 was published Apr 4, 2025

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive... Low Unreviewed

CVE-2024-55895 was published Mar 29, 2025

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles... Low Unreviewed

CVE-2025-31141 was published Mar 27, 2025

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7,... Moderate Unreviewed

CVE-2024-12380 was published Mar 13, 2025

Generation of Error Message Containing Sensitive Information vulnerability in Hillstone Networks... Moderate Unreviewed

CVE-2025-2239 was published Mar 12, 2025

Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical... Moderate Unreviewed

CVE-2025-23185 was published Mar 11, 2025

After attempting to upload a file that does not meet prerequisites, GMOD Apollo will respond with... Moderate Unreviewed

CVE-2025-20002 was published Mar 5, 2025

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed

CVE-2024-56493 was published Feb 27, 2025

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

299 advisories