Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
Insufficient logging in the entry export feature in Devolutions Server allows an authenticated... Low Unreviewed
CVE-2026-9247 was published May 26, 2026
@hulumi/baseline: CloudTrail selector tampering events were not fully detected Moderate
GHSA-gfp8-mp24-5vxg was published for @hulumi/baseline (npm) May 21, 2026
Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 through 9.7.1.13, 9.8.0.0 through... Low Unreviewed
CVE-2026-32803 was published May 8, 2026
HCL AION is affected by a vulnerability where certain user actions are not adequately audited or... Moderate Unreviewed
CVE-2025-52644 was published Mar 16, 2026
In MariaDB server version through 11.8.5, when server audit plugin is enabled with... Moderate Unreviewed
CVE-2026-3494 was published Mar 3, 2026
Harden-Runner: Bypassing Logging of Outbound Connections Using sendto, sendmsg, and sendmmsg in Harden-Runner (Community Tier) Moderate
CVE-2026-25598 was published for step-security/harden-runner (GitHub Actions) Feb 9, 2026
devanshbatham Credited to devanshbatham
Dell PowerScale OneFS, versions prior 9.13.0.0, contains an insufficient logging vulnerability.... Moderate Unreviewed
CVE-2026-22279 was published Jan 22, 2026
: Insufficient Logging vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension... Moderate Unreviewed
CVE-2025-53498 was published Jul 7, 2025
Insufficient logging in the autotyping feature in Devolutions Remote Desktop Manager on Windows... Moderate Unreviewed
CVE-2025-2562 was published Mar 26, 2025
: Insufficient Logging vulnerability in OpenText Secure Content Manager on Windows allows Audit... Moderate Unreviewed
CVE-2024-10863 was published Nov 22, 2024
The ventilator and the Service PC lack sufficient audit logging capabilities to allow for... Critical Unreviewed
CVE-2024-48967 was published Nov 15, 2024
In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12),... Moderate Unreviewed
CVE-2024-2291 was published Mar 20, 2024
Dell PowerScale OneFS 8.2.x through 9.6.0.x contain an insufficient logging vulnerability. A... Low Unreviewed
CVE-2024-24901 was published Mar 4, 2024
An Information Disclosure vulnerability exists in Opay Mobile application 1.5.1.26 and maybe be... High Unreviewed
CVE-2021-43419 was published Nov 7, 2023
Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function,... High Unreviewed
CVE-2023-1995 was published Aug 29, 2023
A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR... Moderate Unreviewed
CVE-2019-19295 was published May 24, 2022
Magento 2 Community Edition Insufficient Logging Moderate
CVE-2019-8123 was published for magento/community-edition (Composer) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database