GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
90 advisories
Filter by severity
User credentials (login & password) are inserted into log files when a user tries to authenticate...
Low
Unreviewed
CVE-2024-12057
was published
Dec 9, 2024
@workos-inc/authkit-remix refresh tokens are logged when the debug flag is enabled
Low
CVE-2024-51753
was published
for
@workos-inc/authkit-remix
(npm)
Nov 5, 2024
@workos-inc/authkit-nextjs refresh tokens are logged when the debug flag is enabled
Low
CVE-2024-51752
was published
for
@workos-inc/authkit-nextjs
(npm)
Nov 5, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-27849
was published
Oct 28, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-40791
was published
Sep 17, 2024
The com.cascadialabs.who (aka Who - Caller ID, Spam Block) application 15.0 for Android places...
Low
Unreviewed
CVE-2024-40096
was published
Aug 5, 2024
Steeltoe Leaks Basic Auth Credentials to Logs After Fetch Registry Error
Low
CVE-2024-40636
was published
for
Steeltoe.Discovery.ClientAutofac
(NuGet)
Jul 17, 2024
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p7, <2...
Low
Unreviewed
CVE-2024-28830
was published
Jun 26, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a...
Low
Unreviewed
CVE-2024-29177
was published
Jun 26, 2024
Slack integration leaks sensitive information in logs
Low
CVE-2024-35196
was published
for
sentry
(pip)
Jun 2, 2024
Fides Webserver Logs Hosted Database Password Partial Exposure Vulnerability
Low
CVE-2024-34715
was published
for
ethyca-fides
(pip)
May 29, 2024
Insertion of Sensitive Information into Log File vulnerability in WebToffee WordPress Backup &...
Low
Unreviewed
CVE-2024-31254
was published
Apr 10, 2024
Insertion of sensitive information into log file for some Intel(R) Local Manageability Service...
Low
Unreviewed
CVE-2023-27502
was published
Mar 14, 2024
A privacy issue was addressed by not logging contents of text fields. This issue is fixed in...
Low
Unreviewed
CVE-2024-23242
was published
Mar 8, 2024
Cleartext Storage of Sensitive Information in Gambio 4.9.2.0 allows attackers to obtain sensitive...
Low
Unreviewed
CVE-2024-23760
was published
Feb 13, 2024
In JetBrains Rider before 2023.3.3 logging of environment variables containing secret values was...
Low
Unreviewed
CVE-2024-24939
was published
Feb 6, 2024
A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management...
Low
Unreviewed
CVE-2024-0716
was published
Jan 19, 2024
A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as...
Low
Unreviewed
CVE-2024-0472
was published
Jan 13, 2024
nvdApiKey is logged in debug mode
Low
GHSA-qqhq-8r2c-c3f5
was published
for
org.owasp:dependency-check-ant
(Maven)
Dec 15, 2023
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local...
Low
Unreviewed
CVE-2023-6287
was published
Nov 27, 2023
Exposure of Sensitive Information in Elastic APM .NET Agent
Low
CVE-2021-22143
was published
for
Elastic.Apm
(NuGet)
Nov 22, 2023
Insertion of sensitive information into log file for some Intel Unison software may allow an...
Low
Unreviewed
CVE-2022-46647
was published
Nov 14, 2023
An insertion of sensitive information into log file vulnerability [CWE-532] in FortiSIEM version...
Low
Unreviewed
CVE-2023-45585
was published
Nov 14, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2023-42857
was published
Oct 25, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2023-40405
was published
Oct 25, 2023
ProTip!
Advisories are also available from the
GraphQL API