GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
222 advisories
Filter by severity
IBM MQ Appliance 9.3 LTS, 9.3 CD, and 9.4 LTS web console could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2024-52897
was published
Dec 19, 2024
IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD web console could allow a remote attacker...
Moderate
Unreviewed
CVE-2024-52896
was published
Dec 19, 2024
IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1
could allow a remote...
Moderate
Unreviewed
CVE-2024-49818
was published
Dec 17, 2024
Generation of Error Message Containing Sensitive Information vulnerability in Dave Kiss...
Moderate
Unreviewed
CVE-2024-54366
was published
Dec 16, 2024
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive...
Moderate
Unreviewed
CVE-2024-51460
was published
Dec 11, 2024
Apache Superset: Error verbosity exposes metadata in analytics databases
Moderate
CVE-2024-53948
was published
for
apache-superset
(pip)
Dec 9, 2024
Sentry improper error handling leaks Application Integration Client Secret
Moderate
CVE-2024-53253
was published
for
sentry
(pip)
Nov 22, 2024
jupyter-server errors include tracebacks with path information
Moderate
CVE-2023-49080
was published
for
jupyter-server
(pip)
Dec 5, 2023
Generation of Error Message Containing Sensitive Information in janeczku/calibre-web
Moderate
CVE-2021-3986
was published
for
calibreweb
(pip)
Nov 15, 2024
Weblate user account enumeration via reset password form
Moderate
CVE-2017-5537
was published
for
weblate
(pip)
May 17, 2022
Moodle leaks user names
Moderate
CVE-2024-48896
was published
for
moodle/moodle
(Composer)
Nov 18, 2024
Flask-AppBuilder vulnerable to possible disclosure of sensitive information on user error
Moderate
CVE-2023-34110
was published
for
Flask-AppBuilder
(pip)
Jun 22, 2023
HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive...
Moderate
Unreviewed
CVE-2024-30141
was published
Nov 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
spi: spi-fsl-dspi: Fix a...
Moderate
Unreviewed
CVE-2021-47161
was published
Mar 25, 2024
Generation of Error Message Containing Sensitive Information in zsa
Moderate
CVE-2024-37162
was published
for
zsa
(npm)
Jun 6, 2024
Generation of Error Message Containing Sensitive Information vulnerability in Posti Posti...
Moderate
Unreviewed
CVE-2024-50512
was published
Oct 30, 2024
Drupal Full Path Disclosure
Moderate
CVE-2024-45440
was published
for
drupal/core
(Composer)
Aug 29, 2024
A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows...
Moderate
Unreviewed
CVE-2024-44762
was published
Oct 16, 2024
SolarWinds Kiwi CatTools is susceptible to a sensitive data disclosure vulnerability when a non...
Moderate
Unreviewed
CVE-2024-45713
was published
Oct 17, 2024
Exposure of Sensitive Information in OPC UA .NET Standard Reference Server
Moderate
CVE-2023-31048
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
May 5, 2023
Possible leak of key's raw field if declared length is incorrect
Moderate
CVE-2022-31124
was published
for
openssh-key-parser
(pip)
Jul 6, 2022
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Full...
Moderate
Unreviewed
CVE-2024-6551
was published
Aug 29, 2024
Apache Superset: Improper error handling on alerts
Moderate
CVE-2024-27315
was published
for
apache-superset
(pip)
Feb 28, 2024
An information disclosure issue in GitLab CE/EE affecting all versions from 16.0 prior to 16.0.6,...
Moderate
Unreviewed
CVE-2023-3362
was published
Jul 13, 2023
An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8,...
Moderate
Unreviewed
CVE-2023-1210
was published
Aug 2, 2023
ProTip!
Advisories are also available from the
GraphQL API