GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
146 advisories
Filter by severity
The PayHere Payment Gateway WordPress plugin before 2.2.12 automatically creates publicly...
High
Unreviewed
CVE-2023-6064
was published
Jan 1, 2024
An insertion of sensitive information into log file vulnerability was identified in the log files...
High
Unreviewed
CVE-2023-6746
was published
Dec 21, 2023
An insertion of sensitive information into the log file in the audit log in GitHub Enterprise...
High
Unreviewed
CVE-2023-6802
was published
Dec 21, 2023
An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs...
High
Unreviewed
CVE-2023-46675
was published
Dec 13, 2023
An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs...
High
Unreviewed
CVE-2023-46671
was published
Dec 13, 2023
Cron log backup files contain administrator session IDs. It is trivial for any attacker who can...
High
Unreviewed
CVE-2023-4677
was published
Nov 23, 2023
An issue was identified by Elastic whereby sensitive information is recorded in Logstash logs...
High
Unreviewed
CVE-2023-46672
was published
Nov 15, 2023
The affected versions of MongoDB Atlas Kubernetes Operator may print sensitive information like...
High
Unreviewed
CVE-2023-0436
was published
Nov 14, 2023
An issue was discovered by Elastic whereby sensitive information is recorded in Kibana logs in...
High
Unreviewed
CVE-2023-31422
was published
Oct 26, 2023
An issue was discovered in Fleet Server >= v8.10.0 and < v8.10.3 where Agent enrolment tokens are...
High
Unreviewed
CVE-2023-46667
was published
Oct 26, 2023
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could...
High
Unreviewed
CVE-2023-5499
was published
Oct 10, 2023
An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows...
High
Unreviewed
CVE-2023-43261
was published
Oct 4, 2023
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an...
High
Unreviewed
CVE-2023-3349
was published
Oct 3, 2023
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By...
High
Unreviewed
CVE-2023-3350
was published
Oct 3, 2023
Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may...
High
Unreviewed
CVE-2023-41308
was published
Sep 27, 2023
An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server...
High
Unreviewed
CVE-2023-22644
was published
Sep 20, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 16.0.8...
High
Unreviewed
CVE-2023-3993
was published
Aug 2, 2023
Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs...
High
Unreviewed
CVE-2023-26026
was published
Jul 19, 2023
Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs...
High
Unreviewed
CVE-2023-26023
was published
Jul 19, 2023
Mattermost Sever fails to redact the DB username and password before emitting an application log...
High
Unreviewed
CVE-2023-2514
was published
Jul 6, 2023
A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8...
High
Unreviewed
CVE-2023-35695
was published
Jun 27, 2023
IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to an Information...
High
Unreviewed
CVE-2022-43930
was published
Feb 17, 2023
SUSHIRO App for Android outputs sensitive information to the log file, which may result in an...
High
Unreviewed
CVE-2023-22362
was published
Feb 13, 2023
Incorrect Access Control issue discovered in tpcms 3.2 allows remote attackers to view sensitive...
High
Unreviewed
CVE-2021-36544
was published
Feb 3, 2023
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file...
High
Unreviewed
CVE-2023-22572
was published
Feb 1, 2023
ProTip!
Advisories are also available from the
GraphQL API