GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,733
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,706

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

593 advisories

Filter by severity

Sort by

Least recently updated

The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information... Moderate Unreviewed

CVE-2024-6687 was published Aug 1, 2024

AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes... High Unreviewed

CVE-2024-52940 was published Nov 18, 2024

An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server... High Unreviewed

CVE-2023-22644 was published Sep 20, 2023

An information disclosure vulnerability exists in the backup configuration process where the SAS... Moderate Unreviewed

CVE-2024-11165 was published Nov 13, 2024

An information disclosure vulnerability exists in Yugabyte Anywhere, where the LDAP bind password... Moderate Unreviewed

CVE-2024-11193 was published Nov 13, 2024

Vulnerability of improper log printing in the Super Home Screen module Impact: Successful... Moderate Unreviewed

CVE-2024-51528 was published Nov 5, 2024

A privacy issue was addressed by not logging contents of text fields. This issue is fixed in... Low Unreviewed

CVE-2024-23242 was published Mar 8, 2024

VMware Cloud Director Object Storage Extension contains an Insertion of Sensitive Information... Moderate Unreviewed

CVE-2024-22276 was published Jun 27, 2024

The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed

CVE-2024-10544 was published Oct 31, 2024

An information disclosure issue was addressed with improved private data redaction for log... Moderate Unreviewed

CVE-2024-44239 was published Oct 28, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed

CVE-2024-27849 was published Oct 28, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2024-44205 was published Oct 24, 2024

Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355... Moderate Unreviewed

CVE-2022-25477 was published Jul 2, 2024

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as... Low Unreviewed

CVE-2024-0472 was published Jan 13, 2024

A vulnerability classified as problematic has been found in Beijing Baichuo Smart S150 Management... Low Unreviewed

CVE-2024-0716 was published Jan 19, 2024

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes... Moderate Unreviewed

CVE-2024-45738 was published Oct 14, 2024

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes... Moderate Unreviewed

CVE-2024-45739 was published Oct 14, 2024

A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition... High Unreviewed

CVE-2024-9466 was published Oct 9, 2024

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p18, <2... Moderate Unreviewed

CVE-2024-38862 was published Oct 14, 2024

Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password... Moderate Unreviewed

CVE-2024-8264 was published Oct 10, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker... Moderate Unreviewed

CVE-2024-20491 was published Oct 2, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco... Moderate Unreviewed

CVE-2024-20490 was published Oct 2, 2024

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows... High Unreviewed

CVE-2024-8609 was published Sep 27, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 16.0.8... High Unreviewed

CVE-2023-3993 was published Aug 2, 2023

An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows... Moderate Unreviewed

CVE-2024-7421 was published Sep 25, 2024

Previous 1 2 3 4 5 … 23 24 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

593 advisories