Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

914 advisories

Loading
A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances... Moderate Unreviewed
CVE-2025-40603 was published Oct 31, 2025
Sensitive data exposure via logging in basic-auth leads to plaintext usernames and passwords... High Unreviewed
CVE-2025-62232 was published Oct 31, 2025
Liferay Portal Vulnerable to Information Exposure Through a Log File Vulnerability in LDAP Import Feature Moderate
CVE-2025-62262 was published for com.liferay:com.liferay.portal.security.ldap.impl (Maven) Oct 27, 2025
ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a... Low Unreviewed
CVE-2025-11248 was published Oct 27, 2025
Rancher exposes sensitive information through audit logs Moderate
CVE-2024-58269 was published for github.com/rancher/rancher (Go) Oct 24, 2025
The Quickcreator – AI Blog Writer plugin for WordPress is vulnerable to Sensitive Information... High Unreviewed
CVE-2025-11504 was published Oct 24, 2025
OpenBao and Vault Leak []byte Fields in Audit Logs Moderate
CVE-2025-62705 was published for github.com/openbao/openbao (Go) Oct 22, 2025
phil9909 satoqz
Credited to phil9909 and satoqz
OpenBao leaks HTTPRawBody in Audit Logs Moderate
CVE-2025-62513 was published for github.com/openbao/openbao (Go) Oct 22, 2025
A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11... Moderate Unreviewed
CVE-2025-46752 was published Oct 16, 2025
A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and... Moderate Unreviewed
CVE-2025-20329 was published Oct 15, 2025
The Content Writer plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-10486 was published Oct 15, 2025
Insertion of sensitive information into log file in Active Directory Federation Services allows... Moderate Unreviewed
CVE-2025-59258 was published Oct 14, 2025
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized... Moderate Unreviewed
CVE-2025-59197 was published Oct 14, 2025
Insertion of sensitive information into log file in Windows StateRepository API allows an... Moderate Unreviewed
CVE-2025-59203 was published Oct 14, 2025
Insertion of sensitive information into log file in Windows Failover Cluster allows an authorized... Moderate Unreviewed
CVE-2025-47979 was published Oct 14, 2025
An Insertion of Sensitive Information into Log File vulnerability [CWE-532] in FortiOS 7.6.0... Low Unreviewed
CVE-2025-31514 was published Oct 14, 2025
Elasticsearch: Insertion of Sensitive Information into Log File via reindex API Moderate
CVE-2025-37727 was published for org.elasticsearch:elasticsearch (Maven) Oct 10, 2025
The WP Reset plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions... Moderate Unreviewed
CVE-2025-10645 was published Oct 7, 2025
IBM Transformation Extender Advanced 10.0.1 stores potentially sensitive information in log files... Low Unreviewed
CVE-2023-50301 was published Oct 1, 2025
IBM Lakehouse (watsonx.data 2.2) stores potentially sensitive information in log files that could... Low Unreviewed
CVE-2025-36144 was published Sep 27, 2025
The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2025-9985 was published Sep 26, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and... High Unreviewed
CVE-2025-34188 was published Sep 19, 2025
Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a vulnerability in its server-side logging... Critical Unreviewed
CVE-2025-34183 was published Sep 16, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in tvOS 26,... Moderate Unreviewed
CVE-2025-43354 was published Sep 16, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in tvOS 26,... Moderate Unreviewed
CVE-2025-43303 was published Sep 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database