GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,670

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

356 advisories

Filter by severity

Sort by

Least recently updated

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed

CVE-2024-22336 was published Feb 17, 2024

Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain... Moderate Unreviewed

CVE-2024-22464 was published Feb 8, 2024

An insertion of Sensitive Information into Log File vulnerability is affecting DELMIA Apriso... Moderate Unreviewed

CVE-2024-0935 was published Feb 1, 2024

In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its... Moderate Unreviewed

CVE-2023-46231 was published Jan 30, 2024

Insertion of debug information into log file during building the elastic search index allows... Moderate Unreviewed

CVE-2024-23791 was published Jan 29, 2024

In Splunk Enterprise versions below 9.0.8, the Splunk RapidDiag utility discloses server... Moderate Unreviewed

CVE-2024-23677 was published Jan 22, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPMU DEV Defender... Moderate Unreviewed

CVE-2023-51490 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database... Moderate Unreviewed

CVE-2023-51508 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StudioWombat WP Optin... Moderate Unreviewed

CVE-2023-51408 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution... Moderate Unreviewed

CVE-2023-52146 was published Jan 5, 2024

In affected versions of Octopus Server it is possible for the OpenID client secret to be logged... Moderate Unreviewed

CVE-2023-1904 was published Dec 14, 2023

An issue was discovered by Elastic whereby Elastic Agent would log a raw event in its own logs at... Moderate Unreviewed

CVE-2023-6687 was published Dec 12, 2023

An issue was discovered by Elastic whereby the Documents API of App Search logged the raw... Moderate Unreviewed

CVE-2023-49923 was published Dec 12, 2023

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2023-42927 was published Dec 12, 2023

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.8 and 6.1.0.0 through 6.1.2.1... Moderate Unreviewed

CVE-2023-25682 was published Nov 22, 2023

Insertion of sensitive information into log file in some Intel(R) On Demand software before... Moderate Unreviewed

CVE-2023-32283 was published Nov 14, 2023

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for... Moderate Unreviewed

CVE-2023-21387 was published Oct 30, 2023

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2023-40425 was published Oct 25, 2023

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2023-41254 was published Oct 25, 2023

Mattermost Desktop fails to set an appropriate log level during initial run after fresh... Moderate Unreviewed

CVE-2023-5339 was published Oct 17, 2023

IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that... Moderate Unreviewed

CVE-2023-40682 was published Oct 13, 2023

An insertion of sensitive information into log file vulnerability in Fortinet FortiGuest 1.0.0... Moderate Unreviewed

CVE-2023-25604 was published Oct 10, 2023

When TACACS+ audit forwarding is configured on BIG-IP or BIG-IQ system, sharedsecret is logged... Moderate Unreviewed

CVE-2023-43485 was published Oct 10, 2023

When BIG-IP APM Guided Configurations are configured, undisclosed sensitive information may be... Moderate Unreviewed

CVE-2023-39447 was published Oct 10, 2023

When on BIG-IP DNS or BIG-IP LTM enabled with DNS Services License, and a TSIG key is created,... Moderate Unreviewed

CVE-2023-41253 was published Oct 10, 2023

Previous 1 2 3 4 5 6 7 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

356 advisories