GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
326 advisories
Filter by severity
An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows...
Moderate
Unreviewed
CVE-2024-7421
was published
Sep 25, 2024
System->Maintenance-> Log Files in dotCMS dashboard is providing the username/password for...
Moderate
Unreviewed
CVE-2024-3165
was published
Apr 2, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-44166
was published
Sep 17, 2024
IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file...
Moderate
Unreviewed
CVE-2023-46175
was published
Sep 26, 2024
Insertion of sensitive information into log file vulnerability in proxy settings component in...
Moderate
Unreviewed
CVE-2022-49037
was published
Sep 26, 2024
Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS...
Moderate
Unreviewed
CVE-2024-43990
was published
Sep 25, 2024
In affected versions of Octopus Server it is possible for the OpenID client secret to be logged...
Moderate
Unreviewed
CVE-2023-1904
was published
Dec 14, 2023
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7...
Moderate
Unreviewed
CVE-2024-4472
was published
Sep 12, 2024
Possible Insertion of Sensitive Information into Log File Vulnerability
in eDirectory has been...
Moderate
Unreviewed
CVE-2021-22533
was published
Sep 12, 2024
Possible Insertion of Sensitive Information into Log File Vulnerability
in Identity Manager has...
Moderate
Unreviewed
CVE-2022-26322
was published
Sep 12, 2024
A vulnerability identified in OpenText™
Identity Manager AzureAD Driver that allows logging of...
Moderate
Unreviewed
CVE-2021-22518
was published
Sep 12, 2024
A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK...
Moderate
Unreviewed
CVE-2024-43781
was published
Sep 10, 2024
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2)....
Moderate
Unreviewed
CVE-2024-42344
was published
Sep 10, 2024
Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into...
Moderate
Unreviewed
CVE-2024-42056
was published
Aug 22, 2024
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355...
Moderate
Unreviewed
CVE-2022-25477
was published
Jul 2, 2024
When generating QKView of BIG-IP Next instance from the BIG-IP Next Central Manager (CM), F5...
Moderate
Unreviewed
CVE-2024-41719
was published
Aug 14, 2024
An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic...
Moderate
Unreviewed
CVE-2024-37283
was published
Aug 12, 2024
Information exposure in the logging system in Yugabyte Platform allows local attackers with...
Moderate
Unreviewed
CVE-2024-0006
was published
Jul 19, 2024
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user...
Moderate
Unreviewed
CVE-2024-5908
was published
Jun 12, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b...
Moderate
Unreviewed
CVE-2024-29954
was published
Jun 26, 2024
IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 stores potentially sensitive...
Moderate
Unreviewed
CVE-2024-38321
was published
Aug 3, 2024
A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive...
Moderate
Unreviewed
CVE-2024-6977
was published
Jul 31, 2024
An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2024-39532
was published
Jul 11, 2024
Sensitive host secret disclosed in cmk-update-agent.log file in Tribe29's Checkmk <= 2.1.0p13,...
Moderate
Unreviewed
CVE-2022-48319
was published
Feb 20, 2023
In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build...
Moderate
Unreviewed
CVE-2024-41824
was published
Jul 22, 2024
ProTip!
Advisories are also available from the
GraphQL API