Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

29 advisories

Loading
Weave GitOps leaked cluster credentials into logs on connection errors Critical
CVE-2022-31098 was published for github.com/weaveworks/weave-gitops (Go) Jun 23, 2022
stefanprodan
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified... Moderate Unreviewed
CVE-2021-1406 was published May 24, 2022
angular-server-side-configuration information disclosure vulnerability in monorepo with node.js backend Critical
CVE-2023-28444 was published for angular-server-side-configuration (npm) Mar 24, 2023
milo526
Apache Thrift Node.js static web server sandbox escape Moderate
CVE-2018-11798 was published for org.apache.thrift:libthrift (Maven) Jan 17, 2019
Insertion of Sensitive Information into Externally-Accessible File or Directory in Jenkins Credentials Plugin Moderate
CVE-2019-10320 was published for org.jenkins-ci.plugins:credentials (Maven) May 24, 2022
A vulnerability in the web server functionality of Cisco Enterprise Network Functions... Moderate Unreviewed
CVE-2019-12623 was published May 24, 2022
CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation Moderate
CVE-2022-4318 was published for github.com/cri-o/cri-o (Go) Dec 29, 2022
sanitize-html Information Exposure vulnerability Moderate
CVE-2024-21501 was published for sanitize-html (npm) Feb 24, 2024
oscerd krassowski
ProTip! Advisories are also available from the GraphQL API