Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,111
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

742 advisories

Loading
Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to... Low Unreviewed
CVE-2025-13743 was published Dec 9, 2025
An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0... Moderate Unreviewed
CVE-2024-47570 was published Dec 9, 2025
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user... Moderate Unreviewed
CVE-2025-64650 was published Dec 9, 2025
ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2... High Unreviewed
CVE-2020-36876 was published Dec 5, 2025
Medtronic CareLink Network allows a local attacker with access to log files on an internal API... Moderate Unreviewed
CVE-2025-12996 was published Dec 4, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.4.5, 18... Low Unreviewed
CVE-2025-13611 was published Nov 26, 2025
In Splunk Add-on for Palo Alto Networks versions below 2.0.2, the add-on exposes client secrets... Low Unreviewed
CVE-2025-20373 was published Nov 26, 2025
Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed
CVE-2025-8663 was published Nov 26, 2025
Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed
CVE-2025-11446 was published Nov 19, 2025
An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiADC... Moderate Unreviewed
CVE-2025-54971 was published Nov 18, 2025
Insertion of sensitive information into log file in Windows License Manager allows an authorized... Moderate Unreviewed
CVE-2025-62208 was published Nov 11, 2025
Insertion of sensitive information into log file in Windows License Manager allows an authorized... Moderate Unreviewed
CVE-2025-62209 was published Nov 11, 2025
Login credentials are inadvertently recorded in logs if a Syslog Server is configured in NETGEAR... Low Unreviewed
CVE-2025-12940 was published Nov 11, 2025
The CE21 Suite plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Critical Unreviewed
CVE-2025-11008 was published Nov 4, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.1 and... Low Unreviewed
CVE-2025-43423 was published Nov 4, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.1 and... Moderate Unreviewed
CVE-2025-43426 was published Nov 4, 2025
A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances... Moderate Unreviewed
CVE-2025-40603 was published Oct 31, 2025
Sensitive data exposure via logging in basic-auth leads to plaintext usernames and passwords... High Unreviewed
CVE-2025-62232 was published Oct 31, 2025
ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a... Low Unreviewed
CVE-2025-11248 was published Oct 27, 2025
The Quickcreator – AI Blog Writer plugin for WordPress is vulnerable to Sensitive Information... High Unreviewed
CVE-2025-11504 was published Oct 24, 2025
A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11... Moderate Unreviewed
CVE-2025-46752 was published Oct 16, 2025
A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and... Moderate Unreviewed
CVE-2025-20329 was published Oct 15, 2025
The Content Writer plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-10486 was published Oct 15, 2025
Insertion of sensitive information into log file in Active Directory Federation Services allows... Moderate Unreviewed
CVE-2025-59258 was published Oct 14, 2025
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized... Moderate Unreviewed
CVE-2025-59197 was published Oct 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database