Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

167 advisories

Loading
ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2... High Unreviewed
CVE-2020-36876 was published Dec 5, 2025
Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed
CVE-2025-8663 was published Nov 26, 2025
Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed
CVE-2025-11446 was published Nov 19, 2025
Sensitive data exposure via logging in basic-auth leads to plaintext usernames and passwords... High Unreviewed
CVE-2025-62232 was published Oct 31, 2025
The Quickcreator – AI Blog Writer plugin for WordPress is vulnerable to Sensitive Information... High Unreviewed
CVE-2025-11504 was published Oct 24, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and... High Unreviewed
CVE-2025-34188 was published Sep 19, 2025
Dell PowerProtect Data Manager, Hyper-V, version(s) 19.19 and 19.20, contain(s) an Insertion of... High Unreviewed
CVE-2025-43888 was published Sep 10, 2025
Dell XtremIO, version(s) 6.4.0-22, contain(s) an Insertion of Sensitive Information into Log File... High Unreviewed
CVE-2025-30105 was published Jul 30, 2025
TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2, contain(s) an Insertion of... High Unreviewed
CVE-2025-26332 was published Jul 30, 2025
Brocade ASCG before 3.3.0 logs JSON Web Tokens (JWT) in log files. An attacker with access to... High Unreviewed
CVE-2025-6391 was published Jul 18, 2025
Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive... High Unreviewed
CVE-2025-36573 was published Jun 12, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7,... High Unreviewed
CVE-2025-31213 was published May 13, 2025
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p29, <2... High Unreviewed
CVE-2025-2092 was published Apr 22, 2025
In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and... High Unreviewed
CVE-2025-20231 was published Mar 27, 2025
Under certain error conditions at time of SANnav installation or upgrade, the encryption key can... High Unreviewed
CVE-2025-1053 was published Feb 14, 2025
Insertion of Sensitive Information into Log File vulnerability in DualCube MooWoodle allows... High Unreviewed
CVE-2025-24556 was published Feb 3, 2025
Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3,... High Unreviewed
CVE-2025-23374 was published Jan 30, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia... High Unreviewed
CVE-2025-24169 was published Jan 28, 2025
Insertion of Sensitive Information into Log File (CWE-532) in the Gallagher Command Centre Alarm... High Unreviewed
CVE-2024-42407 was published Dec 12, 2024
AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes... High Unreviewed
CVE-2024-52940 was published Nov 18, 2024
A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition... High Unreviewed
CVE-2024-9466 was published Oct 9, 2024
Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows... High Unreviewed
CVE-2024-8609 was published Sep 27, 2024
A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker... High Unreviewed
CVE-2024-20440 was published Sep 4, 2024
Passwords of agents and customers are displayed in plain text in the OTRS admin log module if... High Unreviewed
CVE-2024-43444 was published Aug 26, 2024
AI Engine < 2.4.3 is susceptible to remote-code-execution (RCE) via Log Poisoning. The AI Engine... High Unreviewed
CVE-2024-6451 was published Aug 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database