GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,946
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,235
npm 3,739
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,567

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

602 advisories

Filter by severity

Sort by

Least recently updated

IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file... Moderate Unreviewed

CVE-2023-46175 was published Sep 26, 2024

Insertion of sensitive information into log file vulnerability in proxy settings component in... Moderate Unreviewed

CVE-2022-49037 was published Sep 26, 2024

An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows... Moderate Unreviewed

CVE-2024-7421 was published Sep 25, 2024

Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS... Moderate Unreviewed

CVE-2024-43990 was published Sep 25, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2024-44166 was published Sep 17, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed

CVE-2024-40791 was published Sep 17, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7... Moderate Unreviewed

CVE-2024-4472 was published Sep 12, 2024

Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been... Moderate Unreviewed

CVE-2021-22533 was published Sep 12, 2024

A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of... Moderate Unreviewed

CVE-2021-22518 was published Sep 12, 2024

Possible Insertion of Sensitive Information into Log File Vulnerability in Identity Manager has... Moderate Unreviewed

CVE-2022-26322 was published Sep 12, 2024

A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2).... Moderate Unreviewed

CVE-2024-42344 was published Sep 10, 2024

A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK... Moderate Unreviewed

CVE-2024-43781 was published Sep 10, 2024

A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker... High Unreviewed

CVE-2024-20440 was published Sep 4, 2024

Passwords of agents and customers are displayed in plain text in the OTRS admin log module if... High Unreviewed

CVE-2024-43444 was published Aug 26, 2024

Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into... Moderate Unreviewed

CVE-2024-42056 was published Aug 22, 2024

When generating QKView of BIG-IP Next instance from the BIG-IP Next Central Manager (CM), F5... Moderate Unreviewed

CVE-2024-41719 was published Aug 14, 2024

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... High Unreviewed

CVE-2024-41978 was published Aug 13, 2024

An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic... Moderate Unreviewed

CVE-2024-37283 was published Aug 12, 2024

The com.cascadialabs.who (aka Who - Caller ID, Spam Block) application 15.0 for Android places... Low Unreviewed

CVE-2024-40096 was published Aug 5, 2024

IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 stores potentially sensitive... Moderate Unreviewed

CVE-2024-38321 was published Aug 3, 2024

The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information... Moderate Unreviewed

CVE-2024-6687 was published Aug 1, 2024

A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive... Moderate Unreviewed

CVE-2024-6977 was published Jul 31, 2024

In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build... Moderate Unreviewed

CVE-2024-41824 was published Jul 22, 2024

Information exposure in the logging system in Yugabyte Platform allows local attackers with... Moderate Unreviewed

CVE-2024-0006 was published Jul 19, 2024

An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS... Moderate Unreviewed

CVE-2024-39532 was published Jul 11, 2024

Previous 1 2 3 4 5 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

602 advisories