GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,256
Composer 4,633
Erlang 34
GitHub Actions 25
Go 2,238
Maven 5,484
npm 3,900
NuGet 701
pip 3,666
Pub 12
RubyGems 914
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 252,429

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

654 advisories

Filter by severity

Sort by

Least recently updated

Improper restriction of environment variables in Elastic Defend can lead to exposure of sensitive... Moderate Unreviewed

CVE-2025-25013 was published Apr 9, 2025

Insertion of sensitive information into log file in Azure Local Cluster allows an authorized... Moderate Unreviewed

CVE-2025-25002 was published Apr 8, 2025

In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could be logged in the idea.log file Low Unreviewed

CVE-2025-32054 was published Apr 3, 2025

Insertion of Sensitive Information into Log File vulnerability in smackcoders AIO Performance... Moderate Unreviewed

CVE-2025-31788 was published Apr 1, 2025

IBM InfoSphere Information Server 11.7 could disclose sensitive user credentials from log files... Moderate Unreviewed

CVE-2024-7577 was published Mar 29, 2025

IBM UrbanCode Deploy (UCD) through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM... Moderate Unreviewed

CVE-2025-1998 was published Mar 27, 2025

In JetBrains TeamCity before 2025.03 base64 encoded password could be exposed in build log Moderate Unreviewed

CVE-2025-31139 was published Mar 27, 2025

HCL DevOps Deploy / HCL Launch stores potentially sensitive authentication token information in... Moderate Unreviewed

CVE-2025-0273 was published Mar 27, 2025

In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and... High Unreviewed

CVE-2025-20231 was published Mar 27, 2025

An insertion of sensitive information into log file vulnerabilities [CWE-532] in FortiManager... Moderate Unreviewed

CVE-2024-40585 was published Mar 14, 2025

CWE-532: Insertion of Sensitive Information into Log Files vulnerability exists that could cause... Moderate Unreviewed

CVE-2025-2002 was published Mar 12, 2025

Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker... Moderate Unreviewed

CVE-2025-24984 was published Mar 11, 2025

SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative... Moderate Unreviewed

CVE-2025-0071 was published Mar 11, 2025

A vulnerability exists in Docker Desktop prior to version 4.39.0 that could lead to the... Moderate Unreviewed

CVE-2025-1696 was published Mar 6, 2025

IBM Security Verify Bridge Directory Sync 1.0.1 through 1.0.12, IBM Security Verify Gateway for... Low Unreviewed

CVE-2024-45674 was published Feb 22, 2025

The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User... Moderate Unreviewed

CVE-2024-13818 was published Feb 21, 2025

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p27, <2... Moderate Unreviewed

CVE-2025-1075 was published Feb 19, 2025

A security issue in Sitevision version 10.3.1 and older allows a remote attacker, in certain (non... Moderate Unreviewed

CVE-2022-35202 was published Feb 11, 2025

A vulnerability has been identified in Opcenter Intelligence (All versions < V2501). Personal... Moderate Unreviewed

CVE-2025-26490 was published Feb 11, 2025

Using API in the 2N OS device, authorized user can enable logging, which discloses valid... Moderate Unreviewed

CVE-2024-13416 was published Feb 6, 2025

Vulnerability of improper log information control in the UI framework module Impact: Successful... Moderate Unreviewed

CVE-2024-57957 was published Feb 6, 2025

When users log in through the webUI or API using local authentication, BIG-IP Next Central... Moderate Unreviewed

CVE-2025-23413 was published Feb 5, 2025

An information exposure through log file vulnerability exists in Brocade SANnav before Brocade... Moderate Unreviewed

CVE-2022-43933 was published Feb 4, 2025

An information exposure through log file vulnerability exists in Brocade SANnav before Brocade... Moderate Unreviewed

CVE-2022-43935 was published Feb 4, 2025

Brocade SANnav versions before 2.2.2 log Brocade Fabric OS switch passwords when debugging is... Moderate Unreviewed

CVE-2022-43936 was published Feb 4, 2025

Previous 1 2 3 4 5 … 26 27 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

654 advisories