Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
Insertion of Sensitive Information into Log File vulnerability in GSheetConnector CF7 Google... High Unreviewed
CVE-2023-44989 was published Mar 26, 2024
Insecure Variable Substitution in Vela High
CVE-2024-28236 was published for github.com/go-vela/worker (Go) Mar 14, 2024
gdiepen
An issue discovered in Unisys Stealth 5.3.062.0 allows attackers to view sensitive information... High Unreviewed
CVE-2024-23758 was published Feb 21, 2024
The N-able PassPortal extension before 3.29.2 for Chrome inserts sensitive information into a log... High Unreviewed
CVE-2023-47131 was published Feb 9, 2024
Rancher 'Audit Log' leaks sensitive information High
CVE-2023-22649 was published for github.com/rancher/rancher (Go) Feb 8, 2024
APM Server vulnerable to Insertion of Sensitive Information into Log File High
CVE-2024-23448 was published for github.com/elastic/apm-server (Go) Feb 8, 2024
In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal... High Unreviewed
CVE-2023-46230 was published Jan 30, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe... High Unreviewed
CVE-2023-52143 was published Jan 5, 2024
The PayHere Payment Gateway WordPress plugin before 2.2.12 automatically creates publicly... High Unreviewed
CVE-2023-6064 was published Jan 1, 2024
An insertion of sensitive information into the log file in the audit log in GitHub Enterprise... High Unreviewed
CVE-2023-6802 was published Dec 21, 2023
An insertion of sensitive information into log file vulnerability was identified in the log files... High Unreviewed
CVE-2023-6746 was published Dec 21, 2023
An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs... High Unreviewed
CVE-2023-46671 was published Dec 13, 2023
An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs... High Unreviewed
CVE-2023-46675 was published Dec 13, 2023
Cron log backup files contain administrator session IDs. It is trivial for any attacker who can... High Unreviewed
CVE-2023-4677 was published Nov 23, 2023
An issue was identified by Elastic whereby sensitive information is recorded in Logstash logs... High Unreviewed
CVE-2023-46672 was published Nov 15, 2023
The affected versions of MongoDB Atlas Kubernetes Operator may print sensitive information like... High Unreviewed
CVE-2023-0436 was published Nov 14, 2023
Headscale writes bearer tokens to info-level logs High
CVE-2023-47390 was published for github.com/juanfont/headscale (Go) Nov 11, 2023
Apache Airflow Celery provider Insertion of Sensitive Information into Log File vulnerability High
CVE-2023-46215 was published for apache-airflow (pip) Oct 28, 2023
An issue was discovered in Fleet Server >= v8.10.0 and < v8.10.3 where Agent enrolment tokens are... High Unreviewed
CVE-2023-46667 was published Oct 26, 2023
An issue was discovered by Elastic whereby sensitive information is recorded in Kibana logs in... High Unreviewed
CVE-2023-31422 was published Oct 26, 2023
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could... High Unreviewed
CVE-2023-5499 was published Oct 10, 2023
An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows... High Unreviewed
CVE-2023-43261 was published Oct 4, 2023
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an... High Unreviewed
CVE-2023-3349 was published Oct 3, 2023
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By... High Unreviewed
CVE-2023-3350 was published Oct 3, 2023
Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may... High Unreviewed
CVE-2023-41308 was published Sep 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database