Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

742 advisories

Loading
Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack that can... Moderate Unreviewed
CVE-2021-39246 was published May 24, 2022
An information disclosure vulnerability exists in Draytek VigorConnect 1.6.0-B3, allowing an... High Unreviewed
CVE-2021-20129 was published May 24, 2022
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The... Moderate Unreviewed
CVE-2020-10052 was published May 24, 2022
An information disclosure vulnerability was reported in some Motorola-branded Binatone Hubble... Moderate Unreviewed
CVE-2021-3791 was published May 24, 2022
Insertion of information into log file in firmware for some Intel(R) SSD DC may allow a... Moderate Unreviewed
CVE-2021-0148 was published May 24, 2022
An authenticated attacker could utilize the identical agent and cluster node linking keys to... Moderate Unreviewed
CVE-2022-3499 was published Nov 1, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... Moderate Unreviewed
CVE-2021-40364 was published May 24, 2022
The log files in Apache web server contain information directly supplied by clients and does not... Moderate Unreviewed
CVE-2001-1556 was published Apr 30, 2022
Brocade SANnav before version 2.1.1 logs account credentials at the ‘trace’ logging level. High Unreviewed
CVE-2020-15380 was published May 24, 2022
An information exposure through log file vulnerability exists in Cortex XSOAR software where the... Moderate Unreviewed
CVE-2021-3034 was published May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Moderate Unreviewed
CVE-2021-3032 was published May 24, 2022
Sensitive information leak through log files. The following products are affected: Acronis Cyber... Moderate Unreviewed
CVE-2022-44745 was published Nov 8, 2022
In Ericsson Network Manager (ENM) releases before 21.2, users belonging to the same AMOS... High Unreviewed
CVE-2021-32570 was published Aug 27, 2022
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to... Low Unreviewed
CVE-2022-39893 was published Nov 10, 2022
The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive... High Unreviewed
CVE-2022-3691 was published Nov 21, 2022
A flaw was found in KeePass. The vulnerability occurs due to logging the plain text passwords in... High Unreviewed
CVE-2022-0725 was published Mar 11, 2022
HashiCorp Terraform Enterprise before 202202-1 inserts Sensitive Information into a Log File. High Unreviewed
CVE-2022-25374 was published Feb 26, 2022
An insertion of sensitive information into log file vulnerability exists in PcVue versions 15... Moderate Unreviewed
CVE-2022-4311 was published Dec 12, 2022
A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The... Moderate Unreviewed
CVE-2022-38756 was published Dec 17, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to sensitive information... Moderate Unreviewed
CVE-2022-43887 was published Dec 19, 2022
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed
CVE-2022-27636 was published May 6, 2022
On F5 BIG-IP 15.1.x versions prior to 15.1.5.1 and 14.1.x versions prior to 14.1.4.6, when... Moderate Unreviewed
CVE-2022-28859 was published May 6, 2022
An information exposure through log file vulnerability in Brocade SANNav versions before Brocade... Moderate Unreviewed
CVE-2022-28161 was published May 10, 2022
Credential exposure through log files in Undertow Critical
CVE-2019-3888 was published for io.undertow:undertow-core (Maven) Jun 13, 2019
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible Moderate Unreviewed
CVE-2022-29928 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database