GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
563 advisories
Filter by severity
IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive...
Moderate
Unreviewed
CVE-2023-30430
was published
Jun 27, 2024
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p7, <2...
Low
Unreviewed
CVE-2024-28830
was published
Jun 26, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a...
Low
Unreviewed
CVE-2024-29177
was published
Jun 26, 2024
An information disclosure vulnerability in Phloc Webscopes 7.0.0 allows local attackers with...
Unknown
Unreviewed
CVE-2024-6060
was published
Jun 26, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b...
Moderate
Unreviewed
CVE-2024-29954
was published
Jun 26, 2024
Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing...
Moderate
Unreviewed
CVE-2022-44587
was published
Jun 21, 2024
The sessions are stored in clear-text logs. An attacker can retrieve authentication sessions. A...
Moderate
Unreviewed
CVE-2024-27157
was published
Jun 14, 2024
The session cookies, used for authentication, are stored in clear-text logs. An attacker can...
Moderate
Unreviewed
CVE-2024-27156
was published
Jun 14, 2024
Passwords are stored in clear-text logs. An attacker can retrieve passwords. As for the affected...
Moderate
Unreviewed
CVE-2024-27154
was published
Jun 14, 2024
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user...
Moderate
Unreviewed
CVE-2024-5908
was published
Jun 12, 2024
CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause...
Moderate
Unreviewed
CVE-2024-5557
was published
Jun 12, 2024
Insertion of Sensitive Information into Log File vulnerability in Octolize USPS Shipping for...
Moderate
Unreviewed
CVE-2024-32811
was published
Jun 9, 2024
Under certain circumstances the Microsoft® Internet Information Server (IIS) used to host the C...
High
Unreviewed
CVE-2024-0912
was published
Jun 6, 2024
Insertion of Sensitive Information into Log File vulnerability in Code Parrots Easy Forms for...
High
Unreviewed
CVE-2024-25095
was published
Jun 4, 2024
Insertion of Sensitive Information into Log File vulnerability in Lukman Nakib Debug Log – Manger...
Moderate
Unreviewed
CVE-2024-34798
was published
Jun 3, 2024
Insertion of Sensitive Information into Log File vulnerability in AlexaCRM Dynamics 365...
Moderate
Unreviewed
CVE-2024-34550
was published
May 14, 2024
Insertion of Sensitive Information into Log File vulnerability in Ghost Foundation Ghost.This...
High
Unreviewed
CVE-2024-34559
was published
May 14, 2024
IBM Watson CP4D Data Stores 4.0.0 through 4.8.4 stores potentially sensitive information in log...
Moderate
Unreviewed
CVE-2023-40694
was published
May 7, 2024
spaces_plugin/app.py in SolidUI 0.4.0 has an unnecessary print statement for an OpenAI key. The...
High
Unreviewed
CVE-2024-34527
was published
May 6, 2024
A highly privileged account can overwrite arbitrary files on the system with log output. The log...
Moderate
Unreviewed
CVE-2024-28072
was published
May 3, 2024
Insertion of Sensitive Information into Log File vulnerability in Jordy Meow WP Media Cleaner...
Moderate
Unreviewed
CVE-2024-33922
was published
May 2, 2024
Vault Enterprise, when configured with performance standby nodes and a configured audit device,...
Moderate
Unreviewed
CVE-2024-2877
was published
Apr 30, 2024
Insertion of Sensitive Information into Log File vulnerability in Solid Plugins Solid Affiliate...
High
Unreviewed
CVE-2024-33637
was published
Apr 29, 2024
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Joomla to...
Moderate
Unreviewed
CVE-2024-32788
was published
Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Patrick Posner Simply Static...
High
Unreviewed
CVE-2024-32825
was published
Apr 24, 2024
ProTip!
Advisories are also available from the
GraphQL API