GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
594 advisories
Filter by severity
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p22, <2...
Moderate
Unreviewed
CVE-2024-47094
was published
Nov 29, 2024
The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information...
Moderate
Unreviewed
CVE-2024-6687
was published
Aug 1, 2024
AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes...
High
Unreviewed
CVE-2024-52940
was published
Nov 18, 2024
An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server...
High
Unreviewed
CVE-2023-22644
was published
Sep 20, 2023
An information disclosure vulnerability exists in the backup configuration process where the SAS...
Moderate
Unreviewed
CVE-2024-11165
was published
Nov 13, 2024
An information disclosure vulnerability exists in Yugabyte Anywhere, where the LDAP bind password...
Moderate
Unreviewed
CVE-2024-11193
was published
Nov 13, 2024
Vulnerability of improper log printing in the Super Home Screen module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-51528
was published
Nov 5, 2024
A privacy issue was addressed by not logging contents of text fields. This issue is fixed in...
Low
Unreviewed
CVE-2024-23242
was published
Mar 8, 2024
VMware Cloud Director Object Storage Extension contains an Insertion of Sensitive Information...
Moderate
Unreviewed
CVE-2024-22276
was published
Jun 27, 2024
The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Sensitive Information Exposure...
Moderate
Unreviewed
CVE-2024-10544
was published
Oct 31, 2024
An information disclosure issue was addressed with improved private data redaction for log...
Moderate
Unreviewed
CVE-2024-44239
was published
Oct 28, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-27849
was published
Oct 28, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-44205
was published
Oct 24, 2024
A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as...
Low
Unreviewed
CVE-2024-0472
was published
Jan 13, 2024
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355...
Moderate
Unreviewed
CVE-2022-25477
was published
Jul 2, 2024
A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management...
Low
Unreviewed
CVE-2024-0716
was published
Jan 19, 2024
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes...
Moderate
Unreviewed
CVE-2024-45739
was published
Oct 14, 2024
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes...
Moderate
Unreviewed
CVE-2024-45738
was published
Oct 14, 2024
A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition...
High
Unreviewed
CVE-2024-9466
was published
Oct 9, 2024
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p18, <2...
Moderate
Unreviewed
CVE-2024-38862
was published
Oct 14, 2024
Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password...
Moderate
Unreviewed
CVE-2024-8264
was published
Oct 10, 2024
A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker...
Moderate
Unreviewed
CVE-2024-20491
was published
Oct 2, 2024
A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco...
Moderate
Unreviewed
CVE-2024-20490
was published
Oct 2, 2024
Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows...
High
Unreviewed
CVE-2024-8609
was published
Sep 27, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 16.0.8...
High
Unreviewed
CVE-2023-3993
was published
Aug 2, 2023
ProTip!
Advisories are also available from the
GraphQL API