Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

147 advisories

Loading
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file... High Unreviewed
CVE-2023-22572 was published Feb 1, 2023
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log... High Unreviewed
CVE-2023-22574 was published Feb 1, 2023
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log... High Unreviewed
CVE-2023-22575 was published Feb 1, 2023
Insertion of Sensitive Information into Log Files in M-Files Server in M-Files before 22.10.11846... High Unreviewed
CVE-2022-4858 was published Dec 30, 2022
In affected versions of Octopus Server it is possible for target discovery to print certain... High Unreviewed
CVE-2022-2721 was published Nov 25, 2022
The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive... High Unreviewed
CVE-2022-3691 was published Nov 21, 2022
Information Exposure Through Log Files vulnerability discovered in Foundry when logs were... High Unreviewed
CVE-2022-27895 was published Nov 16, 2022
Information Exposure Through Log Files vulnerability discovered in Foundry Code-Workbooks where... High Unreviewed
CVE-2022-27896 was published Nov 15, 2022
Netskope client is impacted by a vulnerability where an authenticated, local attacker can view... High Unreviewed
CVE-2021-44862 was published Nov 4, 2022
In JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build... High Unreviewed
CVE-2022-44624 was published Nov 3, 2022
In NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File... High Unreviewed
CVE-2022-39821 was published Sep 14, 2022
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0... High Unreviewed
CVE-2022-34369 was published Sep 3, 2022
In Ericsson Network Manager (ENM) releases before 21.2, users belonging to the same AMOS... High Unreviewed
CVE-2021-32570 was published Aug 27, 2022
** DISPUTED ** An issue was discovered in Qualys Cloud Agent 4.8.0-49. It writes "ps auxwwe"... High Unreviewed
CVE-2022-29550 was published Aug 19, 2022
An issue was discovered in Couchbase Server before 7.0.4. A private key is leaked to the log... High Unreviewed
CVE-2022-32556 was published Jul 22, 2022
ZXMP M721 has an information leak vulnerability. Since the serial port authentication on the... High Unreviewed
CVE-2022-23141 was published Jul 16, 2022
The OpenVPN Access Server installer creates a log file readable for everyone, which from version... High Unreviewed
CVE-2022-33737 was published Jul 7, 2022
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). A... High Unreviewed
CVE-2022-32254 was published Jun 15, 2022
An issue was discovered in Couchbase Server before 7.0.4. The Backup Service log leaks unredacted... High Unreviewed
CVE-2022-32565 was published Jun 14, 2022
Riverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11... High Unreviewed
CVE-2021-43271 was published Jun 4, 2022
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway... High Unreviewed
CVE-2022-20806 was published May 28, 2022
Brocade SANnav before version 2.1.1 logs account credentials at the ‘trace’ logging level. High Unreviewed
CVE-2020-15380 was published May 24, 2022
An information disclosure vulnerability exists in Draytek VigorConnect 1.6.0-B3, allowing an... High Unreviewed
CVE-2021-20129 was published May 24, 2022
The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary log-file read... High Unreviewed
CVE-2021-22024 was published May 24, 2022
Certain NetModule devices allow credentials via GET parameters to CLI-PHP. These models with... High Unreviewed
CVE-2021-39291 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database