Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

338 advisories

Loading
IBM InfoSphere Information Server 11.7 stores potentially sensitive information in log files that... Moderate Unreviewed
CVE-2024-22352 was published Mar 21, 2024
IBM Maximo Application Suite - Maximo Mobile for EAM 8.10 and 8.11 could disclose sensitive... Moderate Unreviewed
CVE-2023-43043 was published Mar 13, 2024
Insertion of Sensitive Information into Log File vulnerability in Hitachi Cosminexus Component... Moderate Unreviewed
CVE-2023-6814 was published Mar 12, 2024
IBM DS8900F HMC 89.21.19.0, 89.21.31.0, 89.30.68.0, 89.32.40.0, and 89.33.48.0 could allow an... Moderate Unreviewed
CVE-2023-46171 was published Mar 7, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22337 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22335 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22336 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2023-50951 was published Feb 17, 2024
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain... Moderate Unreviewed
CVE-2024-22464 was published Feb 8, 2024
An insertion of Sensitive Information into Log File vulnerability is affecting DELMIA Apriso... Moderate Unreviewed
CVE-2024-0935 was published Feb 1, 2024
In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its... Moderate Unreviewed
CVE-2023-46231 was published Jan 30, 2024
Insertion of debug information into log file during building the elastic search index allows... Moderate Unreviewed
CVE-2024-23791 was published Jan 29, 2024
In Splunk Enterprise versions below 9.0.8, the Splunk RapidDiag utility discloses server... Moderate Unreviewed
CVE-2024-23677 was published Jan 22, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPMU DEV Defender... Moderate Unreviewed
CVE-2023-51490 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database... Moderate Unreviewed
CVE-2023-51508 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StudioWombat WP Optin... Moderate Unreviewed
CVE-2023-51408 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution... Moderate Unreviewed
CVE-2023-52146 was published Jan 5, 2024
In affected versions of Octopus Server it is possible for the OpenID client secret to be logged... Moderate Unreviewed
CVE-2023-1904 was published Dec 14, 2023
An issue was discovered by Elastic whereby Elastic Agent would log a raw event in its own logs at... Moderate Unreviewed
CVE-2023-6687 was published Dec 12, 2023
An issue was discovered by Elastic whereby the Documents API of App Search logged the raw... Moderate Unreviewed
CVE-2023-49923 was published Dec 12, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2023-42927 was published Dec 12, 2023
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.8 and 6.1.0.0 through 6.1.2.1... Moderate Unreviewed
CVE-2023-25682 was published Nov 22, 2023
Insertion of sensitive information into log file in some Intel(R) On Demand software before... Moderate Unreviewed
CVE-2023-32283 was published Nov 14, 2023
In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for... Moderate Unreviewed
CVE-2023-21387 was published Oct 30, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2023-40425 was published Oct 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database