Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

746 advisories

Loading
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22336 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22337 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2023-50951 was published Feb 17, 2024
Cleartext Storage of Sensitive Information in Gambio 4.9.2.0 allows attackers to obtain sensitive... Low Unreviewed
CVE-2024-23760 was published Feb 13, 2024
The N-able PassPortal extension before 3.29.2 for Chrome inserts sensitive information into a log... High Unreviewed
CVE-2023-47131 was published Feb 9, 2024
Rancher 'Audit Log' leaks sensitive information High
CVE-2023-22649 was published for github.com/rancher/rancher (Go) Feb 8, 2024
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain... Moderate Unreviewed
CVE-2024-22464 was published Feb 8, 2024
APM Server vulnerable to Insertion of Sensitive Information into Log File High
CVE-2024-23448 was published for github.com/elastic/apm-server (Go) Feb 8, 2024
In JetBrains Rider before 2023.3.3 logging of environment variables containing secret values was... Low Unreviewed
CVE-2024-24939 was published Feb 6, 2024
An insertion of Sensitive Information into Log File vulnerability is affecting DELMIA Apriso... Moderate Unreviewed
CVE-2024-0935 was published Feb 1, 2024
glance-store logs s3 access keys Moderate
CVE-2024-1141 was published for glance-store (pip) Feb 1, 2024
m3t3kh4n
Hashicorp Vault may expose sensitive log information Moderate
CVE-2024-0831 was published for github.com/hashicorp/vault (Go) Feb 1, 2024
`goreleaser release --debug` shows secrets Moderate
CVE-2024-23840 was published for github.com/goreleaser/goreleaser (Go) Jan 30, 2024
andreaangiolillo caarlos0
In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its... Moderate Unreviewed
CVE-2023-46231 was published Jan 30, 2024
In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal... High Unreviewed
CVE-2023-46230 was published Jan 30, 2024
Insertion of debug information into log file during building the elastic search index allows... Moderate Unreviewed
CVE-2024-23791 was published Jan 29, 2024
In Splunk Enterprise versions below 9.0.8, the Splunk RapidDiag utility discloses server... Moderate Unreviewed
CVE-2024-23677 was published Jan 22, 2024
Insertion of Sensitive Information into Log File in OWASP DependencyCheck Moderate
CVE-2024-23686 was published for org.owasp:dependency-check-ant (Maven) Jan 20, 2024
r3kumar
A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management... Low Unreviewed
CVE-2024-0716 was published Jan 19, 2024
A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as... Low Unreviewed
CVE-2024-0472 was published Jan 13, 2024
react-native-mmkv Insertion of Sensitive Information into Log File vulnerability Moderate
CVE-2024-21668 was published for react-native-mmkv (npm) Jan 9, 2024
maxammann
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StudioWombat WP Optin... Moderate Unreviewed
CVE-2023-51408 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPMU DEV Defender... Moderate Unreviewed
CVE-2023-51490 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database... Moderate Unreviewed
CVE-2023-51508 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution... Moderate Unreviewed
CVE-2023-52146 was published Jan 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database