Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

90 advisories

Loading
Wagtail vulnerable to disclosure of user names via admin bulk action views Low
CVE-2023-45809 was published for wagtail (pip) Oct 19, 2023
quyenheu
An issue was discovered in Plixer Scrutinizer before 19.3.1. It exposes debug logs to... Low Unreviewed
CVE-2023-41263 was published Oct 13, 2023
A vulnerability, which was classified as problematic, has been found in China Unicom TEWA-800G 4... Low Unreviewed
CVE-2023-5028 was published Sep 17, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2023-40442 was published Sep 12, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2023-40392 was published Sep 6, 2023
A vulnerability was found in rkhunter Rootkit Hunter 1.4.4/1.4.6. It has been classified as... Low Unreviewed
CVE-2023-4413 was published Aug 18, 2023
An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11... Low Unreviewed
CVE-2023-3363 was published Jul 13, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2023-23505 was published Jul 6, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. Every keystroke made by any... Low Unreviewed
CVE-2023-28351 was published May 31, 2023
Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http... Low Unreviewed
CVE-2023-31413 was published May 4, 2023
Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform Low
CVE-2023-30618 was published for kitchen-terraform (RubyGems) Apr 24, 2023
brettcurtis
In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file Low Unreviewed
CVE-2022-48435 was published Apr 4, 2023
Juiker app stores debug logs which contains sensitive information to mobile external storage. An... Low Unreviewed
CVE-2022-39043 was published Mar 27, 2023
Shopware's log module vulnerable to Improper Output Neutralization Low
CVE-2023-22733 was published for shopware/core (Composer) Jan 20, 2023
Traefik may display authorization header in the debug logs Low
CVE-2022-23469 was published for github.com/traefik/traefik/v2 (Go) Dec 8, 2022
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to... Low Unreviewed
CVE-2022-39893 was published Nov 10, 2022
Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01... Low Unreviewed
CVE-2022-39876 was published Oct 7, 2022
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions... Low Unreviewed
CVE-2022-36877 was published Sep 10, 2022
next-auth before v4.10.2 and v3.29.9 leaks excessive information into log Low
CVE-2022-31186 was published for next-auth (npm) Aug 6, 2022
ShuPink
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting... Low Unreviewed
CVE-2022-2394 was published Jul 20, 2022
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul... Low Unreviewed
CVE-2022-33697 was published Jul 13, 2022
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR... Low Unreviewed
CVE-2022-33688 was published Jul 13, 2022
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33687 was published Jul 13, 2022
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local... Low Unreviewed
CVE-2022-33693 was published Jul 13, 2022
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2... Low Unreviewed
CVE-2022-30742 was published Jun 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database