GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,396

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

224 advisories

Filter by severity

Sort by

Least recently updated

IBM Tivoli Key Lifecycle Manager (IBM Security Guardium Key Lifecycle Manager) 3.0, 3.0.1, 4.0,... Moderate Unreviewed

CVE-2021-38980 was published Nov 24, 2021

Using XMLHttpRequest, an attacker could have identified installed applications by probing error... Moderate Unreviewed

CVE-2021-43542 was published Dec 9, 2021

An issue was discovered in /goform/login_process in Reprise RLM 14.2. When an attacker attempts... Moderate Unreviewed

CVE-2021-44155 was published Dec 14, 2021

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information Moderate Unreviewed

CVE-2021-4177 was published Dec 29, 2021

IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2021-38894 was published Jan 11, 2022

A Generation of Error Message Containing Sensitive Information vulnerability in the CLI of... High Unreviewed

CVE-2022-22162 was published Jan 20, 2022

Hitachi Energy LinkOne product, has a vulnerability due to a web server misconfiguration, that... Moderate Unreviewed

CVE-2021-40338 was published Jan 29, 2022

Generation of Error Message Containing Sensitive Information in postgresql Moderate Unreviewed

CVE-2021-3393 was published Feb 15, 2022

A remote code execution vulnerability affecting a Valmet DNA service listening on TCP port 1517,... High Unreviewed

CVE-2021-26726 was published Feb 17, 2022

A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support.... Moderate Unreviewed

CVE-2022-0563 was published Feb 22, 2022

An information disclosure in web interface in D-Link DIR-X1860 before 1.03 RevA1 allows a remote... Moderate Unreviewed

CVE-2021-46353 was published Mar 5, 2022

Sensitive information could be displayed when a detailed technical error message is posted. This... Moderate Unreviewed

CVE-2021-35251 was published Mar 11, 2022

An attacker can gain knowledge of a session temporary working folder where the getfile and... High Unreviewed

CVE-2021-32937 was published Apr 3, 2022

Missing filtering in an error message in GitLab CE/EE affecting all versions prior to 14.7.7, 14... Moderate Unreviewed

CVE-2022-1120 was published Apr 5, 2022

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0... Moderate Unreviewed

CVE-2021-39033 was published Apr 20, 2022

In APache APISIX before 3.13.1, an attacker can obtain a plugin-configured secret via an error... High Unreviewed

CVE-2022-29266 was published Apr 21, 2022

An information disclosure vulnerability was discovered in glusterfs server. An attacker could... Moderate Unreviewed

CVE-2018-10913 was published Apr 30, 2022

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to... Moderate Unreviewed

CVE-2000-1191 was published Apr 30, 2022

A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0... Moderate Unreviewed

CVE-2021-43206 was published May 5, 2022

The Mijosoft MijoSearch component 2.0.1 and earlier for Joomla! allows remote attackers to obtain... Moderate Unreviewed

CVE-2013-6879 was published May 5, 2022

When handling a mismatched pre-authentication cookie, the application leaks the internal error... Moderate Unreviewed

CVE-2022-26070 was published May 7, 2022

IBM Guardium Data Encryption (GDE) 4.0.0 and 5.0.0 could allow a remote attacker to obtain... High Unreviewed

CVE-2021-39023 was published May 7, 2022

An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before... High Unreviewed

CVE-2019-9223 was published May 13, 2022

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP... Moderate Unreviewed

CVE-2010-3332 was published May 13, 2022

The Web server in 3CX version 15.5.8801.3 is vulnerable to Information Leakage, because of... Moderate Unreviewed

CVE-2018-14907 was published May 13, 2022

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

224 advisories