GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
175 advisories
Filter by severity
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 16.0.8...
High
Unreviewed
CVE-2023-3993
was published
Aug 2, 2023
Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs...
High
Unreviewed
CVE-2023-26023
was published
Jul 19, 2023
Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs...
High
Unreviewed
CVE-2023-26026
was published
Jul 19, 2023
Weave GitOps Terraform Controller Information Disclosure Vulnerability
High
CVE-2023-34236
was published
for
github.com/weaveworks/tf-controller
(Go)
Jul 14, 2023
Mattermost Sever fails to redact the DB username and password before emitting an application log...
High
Unreviewed
CVE-2023-2514
was published
Jul 6, 2023
A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8...
High
Unreviewed
CVE-2023-35695
was published
Jun 27, 2023
Debug mode leaks confidential data in Cilium
High
CVE-2023-29002
was published
for
github.com/cilium/cilium
(Go)
Apr 19, 2023
IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to an Information...
High
Unreviewed
CVE-2022-43930
was published
Feb 17, 2023
SUSHIRO App for Android outputs sensitive information to the log file, which may result in an...
High
Unreviewed
CVE-2023-22362
was published
Feb 13, 2023
Incorrect Access Control issue discovered in tpcms 3.2 allows remote attackers to view sensitive...
High
Unreviewed
CVE-2021-36544
was published
Feb 3, 2023
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file...
High
Unreviewed
CVE-2023-22572
was published
Feb 1, 2023
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log...
High
Unreviewed
CVE-2023-22575
was published
Feb 1, 2023
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log...
High
Unreviewed
CVE-2023-22574
was published
Feb 1, 2023
Insertion of Sensitive Information into Log Files in M-Files Server in M-Files before 22.10.11846...
High
Unreviewed
CVE-2022-4858
was published
Dec 30, 2022
In affected versions of Octopus Server it is possible for target discovery to print certain...
High
Unreviewed
CVE-2022-2721
was published
Nov 25, 2022
The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive...
High
Unreviewed
CVE-2022-3691
was published
Nov 21, 2022
Information Exposure Through Log Files vulnerability discovered in Foundry when logs were...
High
Unreviewed
CVE-2022-27895
was published
Nov 16, 2022
Information Exposure Through Log Files vulnerability discovered in Foundry Code-Workbooks where...
High
Unreviewed
CVE-2022-27896
was published
Nov 15, 2022
Netskope client is impacted by a vulnerability where an authenticated, local attacker can view...
High
Unreviewed
CVE-2021-44862
was published
Nov 4, 2022
In JetBrains TeamCity version before 2022.10, Password parameters could be exposed in the build...
High
Unreviewed
CVE-2022-44624
was published
Nov 3, 2022
In NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File...
High
Unreviewed
CVE-2022-39821
was published
Sep 14, 2022
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0...
High
Unreviewed
CVE-2022-34369
was published
Sep 3, 2022
In Ericsson Network Manager (ENM) releases before 21.2, users belonging to the same AMOS...
High
Unreviewed
CVE-2021-32570
was published
Aug 27, 2022
** DISPUTED ** An issue was discovered in Qualys Cloud Agent 4.8.0-49. It writes "ps auxwwe"...
High
Unreviewed
CVE-2022-29550
was published
Aug 19, 2022
HashiCorp Consul Template could reveal Vault secret contents in error messages
High
CVE-2022-38149
was published
for
github.com/hashicorp/consul-template
(Go)
Aug 18, 2022
ProTip!
Advisories are also available from the
GraphQL API