GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,479

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

42 advisories

Filter by severity

Sort by

Least recently updated

User enumeration vulnerability in Arconte Áurea 1.5.0.0 version. The exploitation of this... Moderate Unreviewed

CVE-2023-4095 was published Sep 19, 2023

User enumeration vulnerability in Password Recovery plugin 1.2 version for Roundcube, which could... Moderate Unreviewed

CVE-2023-3221 was published Sep 4, 2023

Tadiran Telecom Aeonix - CWE-204: Observable Response Discrepancy Moderate Unreviewed

CVE-2023-37217 was published Jul 30, 2023

Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify... Moderate Unreviewed

CVE-2023-35698 was published Jul 10, 2023

Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows... Moderate Unreviewed

CVE-2023-32346 was published Jul 6, 2023

Under certain circumstances a C•CURE Portal user could enumerate user accounts in C•CURE 9000... Moderate Unreviewed

CVE-2021-36201 was published Jul 6, 2023

TN-5900 Series version 3.3 and prior versions is vulnearble to user enumeration vulnerability.... Moderate Unreviewed

CVE-2023-3336 was published Jul 5, 2023

Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy Moderate Unreviewed

CVE-2023-31186 was published May 30, 2023

When supplied with a random MAC address, Snap One OvrC cloud servers will return... Moderate Unreviewed

CVE-2023-28412 was published May 22, 2023

Observable Response Discrepancy in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215,... Moderate Unreviewed

CVE-2023-23449 was published May 15, 2023

A vulnerability has been identified in Mendix Forgot Password (Mendix 7 compatible) (All versions... Moderate Unreviewed

CVE-2023-27464 was published Apr 11, 2023

A user enumeration vulnerability exists in the login functionality of Ghost Foundation Ghost 5.9... Moderate Unreviewed

CVE-2022-41697 was published Dec 22, 2022

A remote, unauthenticated attacker can enumerate valid users by sending specific requests to the... High Unreviewed

CVE-2022-22520 was published Sep 15, 2022

All CODESYS Visualization versions before V4.2.0.0 generate a login dialog vulnerable to... Moderate Unreviewed

CVE-2022-1989 was published Aug 24, 2022

A Observable Response Discrepancy vulnerability in spacewalk-java of SUSE Manager Server 4.1,... Moderate Unreviewed

CVE-2022-31248 was published Jun 23, 2022

In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users... High Unreviewed

CVE-2021-34580 was published May 24, 2022

A vulnerability in Qlik Sense Enterprise on Windows could allow an remote attacker to enumerate... Moderate Unreviewed

CVE-2022-0564 was published Feb 22, 2022

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

42 advisories