Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,479
Maven
5,000+
npm
5,000+
NuGet
886
pip
4,740
Pub
13
RubyGems
1,031
Rust
1,225
Swift
53
Unreviewed advisories
All unreviewed
5,000+

47 advisories

Loading
IBM Cloud Pak System 2.3.3.6, 2.3.3.7, 2.3.4.0, 2.3.4.1, and 2.3.5.0 could disclose folder... Moderate Unreviewed
CVE-2023-38265 was published Feb 17, 2026
Rack has a Directory Traversal via Rack:Directory High
CVE-2026-22860 was published for rack (RubyGems) Feb 17, 2026
Masamuneee Credited to Masamuneee, jeremyevans, and ioquatix jeremyevans jeremyevans
ioquatix ioquatix
RED-V Super Digital Signage System 5.1.1 contains an information disclosure vulnerability that... Moderate Unreviewed
CVE-2020-36921 was published Jan 6, 2026
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an information disclosure vulnerability that allows... Moderate Unreviewed
CVE-2022-50788 was published Dec 31, 2025
OpenBMCS 2.4 contains an information disclosure vulnerability that allows unauthenticated... High Unreviewed
CVE-2021-47718 was published Dec 9, 2025
IBM QRadar SIEM 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability... Low Unreviewed
CVE-2024-56464 was published Dec 9, 2025
A vulnerability was determined in SourceCodester Farm Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-13200 was published Nov 15, 2025
Moodle's error handling leads to sensitive information disclosure Moderate
CVE-2025-62396 was published for moodle/moodle (Composer) Oct 23, 2025
IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the... Moderate Unreviewed
CVE-2025-27906 was published Oct 14, 2025
Mastra Docs MCP Server `@mastra/mcp-docs-server` Leads to Information Exposure Moderate
CVE-2025-61685 was published for @mastra/mcp-docs-server (npm) Sep 24, 2025
lirantal Credited to lirantal
Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is... High Unreviewed
CVE-2025-28170 was published Jul 29, 2025
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6, and 6.2.0.0 through 6.2.0.4 could... Moderate Unreviewed
CVE-2025-2827 was published Jul 8, 2025
The configuration of the Apache httpd webserver which serves the MEAC300-FNADE4 web application,... Moderate Unreviewed
CVE-2025-27452 was published Jul 3, 2025
A vulnerability classified as critical was found in SourceCodester Client Database Management... Moderate Unreviewed
CVE-2025-4909 was published May 19, 2025
A vulnerability, which was classified as problematic, was found in SourceCodester Online Student... Moderate Unreviewed
CVE-2025-4807 was published May 16, 2025
IBM InfoSphere Information Server 11.7 could disclose sensitive information to an authenticated... Moderate Unreviewed
CVE-2025-1138 was published May 15, 2025
A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara... High Unreviewed
CVE-2025-45320 was published May 5, 2025
Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.0.0, contains an exposure of information... Low Unreviewed
CVE-2025-23378 was published Apr 10, 2025
A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1... Moderate Unreviewed
CVE-2025-2652 was published Mar 23, 2025
A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear... Moderate Unreviewed
CVE-2025-2651 was published Mar 23, 2025
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-2038 was published Mar 6, 2025
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could... Low Unreviewed
CVE-2024-28766 was published Jan 27, 2025
IBM Control Center 6.2.1 and 6.3.1 could allow an authenticated user to obtain sensitive... Moderate Unreviewed
CVE-2024-35113 was published Jan 25, 2025
@saltcorn/server arbitrary file and directory listing when accessing build mobile app results Moderate
GHSA-cfqx-f43m-vfh7 was published for @saltcorn/server (npm) Oct 3, 2024
dellalibera Credited to dellalibera
A vulnerability, which was classified as problematic, has been found in SourceCodester Food... Moderate Unreviewed
CVE-2024-8711 was published Sep 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database