GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
90 advisories
Filter by severity
Sensitive Data Exposure in sequelize-cli
Low
GHSA-3xc7-xg67-pw99
was published
for
sequelize-cli
(npm)
Jun 5, 2019
Log injection in SimpleSAMLphp
Low
CVE-2020-5225
was published
for
simplesamlphp/simplesamlphp
(Composer)
Jan 24, 2020
Shopware's log module vulnerable to Improper Output Neutralization
Low
CVE-2023-22733
was published
for
shopware/core
(Composer)
Jan 20, 2023
In ArrayMap, there is a possible leak of the content of SMS messages due to log information...
Low
Unreviewed
CVE-2021-39739
was published
Mar 31, 2022
Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to...
Low
Unreviewed
CVE-2022-1157
was published
Apr 12, 2022
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions...
Low
Unreviewed
CVE-2022-36877
was published
Sep 10, 2022
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2...
Low
Unreviewed
CVE-2022-30742
was published
Jun 8, 2022
Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7...
Low
Unreviewed
CVE-2022-30741
was published
Jun 8, 2022
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR...
Low
Unreviewed
CVE-2022-33688
was published
Jul 13, 2022
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33687
was published
Jul 13, 2022
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul...
Low
Unreviewed
CVE-2022-33697
was published
Jul 13, 2022
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-33693
was published
Jul 13, 2022
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive...
Low
Unreviewed
CVE-2016-0296
was published
May 17, 2022
next-auth before v4.10.2 and v3.29.9 leaks excessive information into log
Low
CVE-2022-31186
was published
for
next-auth
(npm)
Aug 6, 2022
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by...
Low
Unreviewed
CVE-2016-2943
was published
May 17, 2022
Traefik may display authorization header in the debug logs
Low
CVE-2022-23469
was published
for
github.com/traefik/traefik/v2
(Go)
Dec 8, 2022
The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account...
Low
Unreviewed
CVE-2019-16206
was published
May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS...
Low
Unreviewed
CVE-2019-19756
was published
May 24, 2022
An information exposure vulnerability in the logging component of Palo Alto Networks Global...
Low
Unreviewed
CVE-2020-1987
was published
May 24, 2022
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7...
Low
Unreviewed
CVE-2020-7322
was published
May 24, 2022
An information exposure through log file vulnerability exists where the password for the...
Low
Unreviewed
CVE-2020-2048
was published
May 24, 2022
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically...
Low
Unreviewed
CVE-2021-25350
was published
May 24, 2022
Automox Agent prior to version 31 logs potentially sensitive information in local log files,...
Low
Unreviewed
CVE-2021-26908
was published
May 24, 2022
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged...
Low
Unreviewed
CVE-2021-29759
was published
May 24, 2022
Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An...
Low
Unreviewed
CVE-2021-21597
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API