GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
54 advisories
Filter by severity
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP...
Moderate
Unreviewed
CVE-2024-39740
was published
Jul 15, 2024
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2...
Low
Unreviewed
CVE-2023-42010
was published
Jul 17, 2024
Full Path Disclosure vulnerability in AdmirorFrames Joomla! extension in afHelper.php script...
Moderate
Unreviewed
CVE-2024-5735
was published
Jul 3, 2024
A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM...
High
Unreviewed
CVE-2024-39675
was published
Jul 9, 2024
The Web Frontend of KNIME Business Hub before 1.4.0 allows an unauthenticated remote attacker to...
Moderate
Unreviewed
CVE-2023-2541
was published
Jun 7, 2023
An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7,...
Moderate
Unreviewed
CVE-2024-6389
was published
Sep 12, 2024
An information disclosure vulnerability was reported in the Lenovo Tab M8 HD that could allow a...
Low
Unreviewed
CVE-2023-5081
was published
Jan 19, 2024
"IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information...
Moderate
Unreviewed
CVE-2022-38710
was published
Nov 4, 2022
SAP Business One (Service Layer) - version 10.0, allows an authenticated attacker with deep...
Moderate
Unreviewed
CVE-2023-37487
was published
Aug 8, 2023
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a...
Moderate
Unreviewed
CVE-2024-8687
was published
Sep 11, 2024
A vulnerability in Cortex XSOAR allows the disclosure of incident data to users who do not have...
Moderate
Unreviewed
CVE-2024-9470
was published
Oct 9, 2024
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2024-49252
was published
Oct 16, 2024
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2024-48024
was published
Oct 17, 2024
Drupal Full Path Disclosure
Moderate
CVE-2024-45440
was published
for
drupal/core
(Composer)
Aug 29, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2024-50425
was published
Oct 30, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2024-50528
was published
Nov 4, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh...
Low
Unreviewed
CVE-2024-47799
was published
Nov 12, 2024
An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE...
Moderate
Unreviewed
CVE-2024-36509
was published
Nov 12, 2024
A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could...
Moderate
Unreviewed
CVE-2021-1234
was published
Nov 18, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in...
Moderate
Unreviewed
CVE-2024-52033
was published
Nov 20, 2024
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00...
Moderate
Unreviewed
CVE-2024-41781
was published
Nov 22, 2024
A vulnerability exists in NSD570 that allows any authenticated
user to access all device logs...
Moderate
Unreviewed
CVE-2024-9929
was published
Nov 26, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7...
Moderate
Unreviewed
CVE-2024-10240
was published
Nov 26, 2024
The uyuni-server-attestation systemd service needs a database_password environment variable. This...
Moderate
Unreviewed
CVE-2024-22037
was published
Nov 28, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in IDE...
Moderate
Unreviewed
CVE-2024-53768
was published
Nov 30, 2024
ProTip!
Advisories are also available from the
GraphQL API