GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,538

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

603 advisories

Filter by severity

Sort by

Least recently updated

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed

CVE-2024-22336 was published Feb 17, 2024

Cleartext Storage of Sensitive Information in Gambio 4.9.2.0 allows attackers to obtain sensitive... Low Unreviewed

CVE-2024-23760 was published Feb 13, 2024

The N-able PassPortal extension before 3.29.2 for Chrome inserts sensitive information into a log... High Unreviewed

CVE-2023-47131 was published Feb 9, 2024

Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain... Moderate Unreviewed

CVE-2024-22464 was published Feb 8, 2024

In JetBrains Rider before 2023.3.3 logging of environment variables containing secret values was... Low Unreviewed

CVE-2024-24939 was published Feb 6, 2024

An insertion of Sensitive Information into Log File vulnerability is affecting DELMIA Apriso... Moderate Unreviewed

CVE-2024-0935 was published Feb 1, 2024

In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal... High Unreviewed

CVE-2023-46230 was published Jan 30, 2024

In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its... Moderate Unreviewed

CVE-2023-46231 was published Jan 30, 2024

Insertion of debug information into log file during building the elastic search index allows... Moderate Unreviewed

CVE-2024-23791 was published Jan 29, 2024

In Splunk Enterprise versions below 9.0.8, the Splunk RapidDiag utility discloses server... Moderate Unreviewed

CVE-2024-23677 was published Jan 22, 2024

A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management... Low Unreviewed

CVE-2024-0716 was published Jan 19, 2024

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as... Low Unreviewed

CVE-2024-0472 was published Jan 13, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database... Moderate Unreviewed

CVE-2023-51508 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StudioWombat WP Optin... Moderate Unreviewed

CVE-2023-51408 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPMU DEV Defender... Moderate Unreviewed

CVE-2023-51490 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe... High Unreviewed

CVE-2023-52143 was published Jan 5, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution... Moderate Unreviewed

CVE-2023-52146 was published Jan 5, 2024

The PayHere Payment Gateway WordPress plugin before 2.2.12 automatically creates publicly... High Unreviewed

CVE-2023-6064 was published Jan 1, 2024

An insertion of sensitive information into the log file in the audit log in GitHub Enterprise... High Unreviewed

CVE-2023-6802 was published Dec 21, 2023

An insertion of sensitive information into log file vulnerability was identified in the log files... High Unreviewed

CVE-2023-6746 was published Dec 21, 2023

In affected versions of Octopus Server it is possible for the OpenID client secret to be logged... Moderate Unreviewed

CVE-2023-1904 was published Dec 14, 2023

An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs... High Unreviewed

CVE-2023-46675 was published Dec 13, 2023

An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs... High Unreviewed

CVE-2023-46671 was published Dec 13, 2023

An issue was discovered by Elastic whereby Elastic Agent would log a raw event in its own logs at... Moderate Unreviewed

CVE-2023-6687 was published Dec 12, 2023

An issue was discovered by Elastic whereby the Documents API of App Search logged the raw... Moderate Unreviewed

CVE-2023-49923 was published Dec 12, 2023

Previous 1 2 3 4 5 6 7 8 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

603 advisories