GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,593
Composer 4,211
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,244

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

339 advisories

Filter by severity

Sort by

Least recently updated

An information disclosure vulnerability exists in Yugabyte Anywhere, where the LDAP bind password... Moderate Unreviewed

CVE-2024-11193 was published Nov 13, 2024

An information disclosure vulnerability exists in the backup configuration process where the SAS... Moderate Unreviewed

CVE-2024-11165 was published Nov 13, 2024

Vulnerability of improper log printing in the Super Home Screen module Impact: Successful... Moderate Unreviewed

CVE-2024-51528 was published Nov 5, 2024

The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed

CVE-2024-10544 was published Oct 31, 2024

An information disclosure issue was addressed with improved private data redaction for log... Moderate Unreviewed

CVE-2024-44239 was published Oct 28, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2024-44205 was published Oct 24, 2024

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes... Moderate Unreviewed

CVE-2024-45738 was published Oct 14, 2024

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes... Moderate Unreviewed

CVE-2024-45739 was published Oct 14, 2024

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p18, <2... Moderate Unreviewed

CVE-2024-38862 was published Oct 14, 2024

Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password... Moderate Unreviewed

CVE-2024-8264 was published Oct 10, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker... Moderate Unreviewed

CVE-2024-20491 was published Oct 2, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco... Moderate Unreviewed

CVE-2024-20490 was published Oct 2, 2024

IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file... Moderate Unreviewed

CVE-2023-46175 was published Sep 26, 2024

Insertion of sensitive information into log file vulnerability in proxy settings component in... Moderate Unreviewed

CVE-2022-49037 was published Sep 26, 2024

An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows... Moderate Unreviewed

CVE-2024-7421 was published Sep 25, 2024

Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS... Moderate Unreviewed

CVE-2024-43990 was published Sep 25, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2024-44166 was published Sep 17, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7... Moderate Unreviewed

CVE-2024-4472 was published Sep 12, 2024

Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been... Moderate Unreviewed

CVE-2021-22533 was published Sep 12, 2024

A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of... Moderate Unreviewed

CVE-2021-22518 was published Sep 12, 2024

Possible Insertion of Sensitive Information into Log File Vulnerability in Identity Manager has... Moderate Unreviewed

CVE-2022-26322 was published Sep 12, 2024

A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2).... Moderate Unreviewed

CVE-2024-42344 was published Sep 10, 2024

A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK... Moderate Unreviewed

CVE-2024-43781 was published Sep 10, 2024

Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into... Moderate Unreviewed

CVE-2024-42056 was published Aug 22, 2024

When generating QKView of BIG-IP Next instance from the BIG-IP Next Central Manager (CM), F5... Moderate Unreviewed

CVE-2024-41719 was published Aug 14, 2024

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

339 advisories