Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,826
Erlang
36
GitHub Actions
32
Go
2,426
Maven
5,000+
npm
4,058
NuGet
723
pip
3,848
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

159 advisories

Loading
Dell XtremIO, version(s) 6.4.0-22, contain(s) an Insertion of Sensitive Information into Log File... High Unreviewed
CVE-2025-30105 was published Jul 30, 2025
TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2, contain(s) an Insertion of... High Unreviewed
CVE-2025-26332 was published Jul 30, 2025
Brocade ASCG before 3.3.0 logs JSON Web Tokens (JWT) in log files. An attacker with access to... High Unreviewed
CVE-2025-6391 was published Jul 18, 2025
Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive... High Unreviewed
CVE-2025-36573 was published Jun 12, 2025
** DISPUTED ** An issue was discovered in SecurEnvoy SecurAccess 9.3.502. When put in Debug mode... High Unreviewed
CVE-2018-18466 was published May 13, 2022
AI Engine < 2.4.3 is susceptible to remote-code-execution (RCE) via Log Poisoning. The AI Engine... High Unreviewed
CVE-2024-6451 was published Aug 19, 2024
A logging issue was addressed with improved data redaction. This issue is fixed in iPadOS 17.7.7,... High Unreviewed
CVE-2025-31213 was published May 13, 2025
In affected versions of Octopus Server it is possible for target discovery to print certain... High Unreviewed
CVE-2022-2721 was published Nov 25, 2022
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p29, <2... High Unreviewed
CVE-2025-2092 was published Apr 22, 2025
MyBB (aka MyBulletinBoard) before 1.6.18 and 1.8.x before 1.8.6 and MyBB Merge System before 1.8... High Unreviewed
CVE-2015-8977 was published May 17, 2022
An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v250 and CAPI... High Unreviewed
CVE-2016-9882 was published May 13, 2022
An issue in iTop DualSafe Password Manager & Digital Vault before 1.4.24 allows a local attacker... High Unreviewed
CVE-2024-24272 was published Mar 22, 2024
In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and... High Unreviewed
CVE-2025-20231 was published Mar 27, 2025
SUSHIRO App for Android outputs sensitive information to the log file, which may result in an... High Unreviewed
CVE-2023-22362 was published Feb 13, 2023
An issue was identified by Elastic whereby sensitive information is recorded in Logstash logs... High Unreviewed
CVE-2023-46672 was published Nov 15, 2023
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a prints Brocade Fabric OS switch... High Unreviewed
CVE-2024-29959 was published Apr 19, 2024
When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode,... High Unreviewed
CVE-2024-29957 was published Apr 19, 2024
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a prints the encryption key in the... High Unreviewed
CVE-2024-29958 was published Apr 19, 2024
Insertion of Sensitive Information into Log File vulnerability in DualCube MooWoodle allows... High Unreviewed
CVE-2025-24556 was published Feb 3, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia... High Unreviewed
CVE-2025-24169 was published Jan 28, 2025
Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3,... High Unreviewed
CVE-2025-23374 was published Jan 30, 2025
Insertion of Sensitive Information into Log File (CWE-532) in the Gallagher Command Centre Alarm... High Unreviewed
CVE-2024-42407 was published Dec 12, 2024
AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes... High Unreviewed
CVE-2024-52940 was published Nov 18, 2024
An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server... High Unreviewed
CVE-2023-22644 was published Sep 20, 2023
A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition... High Unreviewed
CVE-2024-9466 was published Oct 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database