Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

356 advisories

Loading
Insertion of Sensitive Information into Log File vulnerability in TrustedLogin TrustedLogin... Moderate Unreviewed
CVE-2024-37270 was published Jul 10, 2024
An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The Special... Moderate Unreviewed
CVE-2024-40596 was published Jul 7, 2024
An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can... Moderate Unreviewed
CVE-2024-40598 was published Jul 7, 2024
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355... Moderate Unreviewed
CVE-2022-25477 was published Jul 2, 2024
Under certain circumstances unnecessary user details are provided within system logs Moderate Unreviewed
CVE-2024-32757 was published Jul 2, 2024
VMware Cloud Director Object Storage Extension contains an Insertion of Sensitive Information... Moderate Unreviewed
CVE-2024-22276 was published Jun 27, 2024
IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive... Moderate Unreviewed
CVE-2023-30430 was published Jun 27, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b... Moderate Unreviewed
CVE-2024-29954 was published Jun 26, 2024
Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing... Moderate Unreviewed
CVE-2022-44587 was published Jun 21, 2024
The session cookies, used for authentication, are stored in clear-text logs. An attacker can... Moderate Unreviewed
CVE-2024-27156 was published Jun 14, 2024
The sessions are stored in clear-text logs. An attacker can retrieve authentication sessions. A... Moderate Unreviewed
CVE-2024-27157 was published Jun 14, 2024
Passwords are stored in clear-text logs. An attacker can retrieve passwords. As for the affected... Moderate Unreviewed
CVE-2024-27154 was published Jun 14, 2024
CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause... Moderate Unreviewed
CVE-2024-5557 was published Jun 12, 2024
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user... Moderate Unreviewed
CVE-2024-5908 was published Jun 12, 2024
Insertion of Sensitive Information into Log File vulnerability in Octolize USPS Shipping for... Moderate Unreviewed
CVE-2024-32811 was published Jun 9, 2024
Insertion of Sensitive Information into Log File vulnerability in Lukman Nakib Debug Log – Manger... Moderate Unreviewed
CVE-2024-34798 was published Jun 3, 2024
Insertion of Sensitive Information into Log File vulnerability in AlexaCRM Dynamics 365... Moderate Unreviewed
CVE-2024-34550 was published May 14, 2024
IBM Watson CP4D Data Stores 4.0.0 through 4.8.4 stores potentially sensitive information in log... Moderate Unreviewed
CVE-2023-40694 was published May 7, 2024
A highly privileged account can overwrite arbitrary files on the system with log output. The log... Moderate Unreviewed
CVE-2024-28072 was published May 3, 2024
Insertion of Sensitive Information into Log File vulnerability in Jordy Meow WP Media Cleaner... Moderate Unreviewed
CVE-2024-33922 was published May 2, 2024
Vault Enterprise, when configured with performance standby nodes and a configured audit device,... Moderate Unreviewed
CVE-2024-2877 was published Apr 30, 2024
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Joomla to... Moderate Unreviewed
CVE-2024-32788 was published Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Very Good Plugins WP Fusion... Moderate Unreviewed
CVE-2024-32796 was published Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center... Moderate Unreviewed
CVE-2023-6833 was published Apr 23, 2024
IBM Aspera Faspex 5.0.0 through 5.0.7 stores potentially sensitive information in log files that... Moderate Unreviewed
CVE-2023-22869 was published Apr 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database