Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

563 advisories

Loading
IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive... Moderate Unreviewed
CVE-2023-30430 was published Jun 27, 2024
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p7, <2... Low Unreviewed
CVE-2024-28830 was published Jun 26, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a... Low Unreviewed
CVE-2024-29177 was published Jun 26, 2024
An information disclosure vulnerability in Phloc Webscopes 7.0.0 allows local attackers with... Unknown Unreviewed
CVE-2024-6060 was published Jun 26, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b... Moderate Unreviewed
CVE-2024-29954 was published Jun 26, 2024
Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing... Moderate Unreviewed
CVE-2022-44587 was published Jun 21, 2024
The sessions are stored in clear-text logs. An attacker can retrieve authentication sessions. A... Moderate Unreviewed
CVE-2024-27157 was published Jun 14, 2024
The session cookies, used for authentication, are stored in clear-text logs. An attacker can... Moderate Unreviewed
CVE-2024-27156 was published Jun 14, 2024
Passwords are stored in clear-text logs. An attacker can retrieve passwords. As for the affected... Moderate Unreviewed
CVE-2024-27154 was published Jun 14, 2024
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user... Moderate Unreviewed
CVE-2024-5908 was published Jun 12, 2024
CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause... Moderate Unreviewed
CVE-2024-5557 was published Jun 12, 2024
Insertion of Sensitive Information into Log File vulnerability in Octolize USPS Shipping for... Moderate Unreviewed
CVE-2024-32811 was published Jun 9, 2024
Under certain circumstances the Microsoft® Internet Information Server (IIS) used to host the C... High Unreviewed
CVE-2024-0912 was published Jun 6, 2024
Insertion of Sensitive Information into Log File vulnerability in Code Parrots Easy Forms for... High Unreviewed
CVE-2024-25095 was published Jun 4, 2024
Insertion of Sensitive Information into Log File vulnerability in Lukman Nakib Debug Log – Manger... Moderate Unreviewed
CVE-2024-34798 was published Jun 3, 2024
Insertion of Sensitive Information into Log File vulnerability in AlexaCRM Dynamics 365... Moderate Unreviewed
CVE-2024-34550 was published May 14, 2024
Insertion of Sensitive Information into Log File vulnerability in Ghost Foundation Ghost.This... High Unreviewed
CVE-2024-34559 was published May 14, 2024
IBM Watson CP4D Data Stores 4.0.0 through 4.8.4 stores potentially sensitive information in log... Moderate Unreviewed
CVE-2023-40694 was published May 7, 2024
spaces_plugin/app.py in SolidUI 0.4.0 has an unnecessary print statement for an OpenAI key. The... High Unreviewed
CVE-2024-34527 was published May 6, 2024
A highly privileged account can overwrite arbitrary files on the system with log output. The log... Moderate Unreviewed
CVE-2024-28072 was published May 3, 2024
Insertion of Sensitive Information into Log File vulnerability in Jordy Meow WP Media Cleaner... Moderate Unreviewed
CVE-2024-33922 was published May 2, 2024
Vault Enterprise, when configured with performance standby nodes and a configured audit device,... Moderate Unreviewed
CVE-2024-2877 was published Apr 30, 2024
Insertion of Sensitive Information into Log File vulnerability in Solid Plugins Solid Affiliate... High Unreviewed
CVE-2024-33637 was published Apr 29, 2024
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Joomla to... Moderate Unreviewed
CVE-2024-32788 was published Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Patrick Posner Simply Static... High Unreviewed
CVE-2024-32825 was published Apr 24, 2024
ProTip! Advisories are also available from the GraphQL API