Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

550 advisories

Loading
IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before... Moderate Unreviewed
CVE-2015-1931 was published Sep 30, 2022
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... High Unreviewed
CVE-2020-24577 was published May 24, 2022
IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may include sensitive information in its URLs... High Unreviewed
CVE-2020-5018 was published May 24, 2022
An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to find... High Unreviewed
CVE-2021-27140 was published May 24, 2022
An issue was discovered on FiberHome HG6245D devices through RP2613. wifi_custom.cfg has... High Unreviewed
CVE-2021-27174 was published May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could disclose highly sensitive information... Moderate Unreviewed
CVE-2021-20408 was published May 24, 2022
A vulnerability in the configuration archive functionality of Cisco DNA Center could allow any... Moderate Unreviewed
CVE-2021-1265 was published May 24, 2022
An issue was discovered on Geeni GNC-CW028 Camera 2.7.2, Geeni GNC-CW025 Doorbell 2.9.5, Merkury... High Unreviewed
CVE-2020-29001 was published May 24, 2022
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 and 6.0.0.0 through 6.0.3.1... Moderate Unreviewed
CVE-2019-4738 was published May 24, 2022
IBM Cloud Pak for Automation 20.0.3, 20.0.2-IF002 stores potentially sensitive information in... Moderate Unreviewed
CVE-2021-20358 was published May 24, 2022
An issue was discovered in SmartFoxServer 2.17.0. Cleartext password disclosure can occur via ... Moderate Unreviewed
CVE-2021-26550 was published May 24, 2022
Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security ... Moderate Unreviewed
CVE-2021-23878 was published May 24, 2022
In moveInMediaStore of FileSystemProvider.java, there is a possible file exposure due to stale... High Unreviewed
CVE-2021-0337 was published May 24, 2022
An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_2g.cfg has cleartext... High Unreviewed
CVE-2021-27175 was published May 24, 2022
Telegram before 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in... Moderate Unreviewed
CVE-2021-27205 was published May 24, 2022
In all versions of GitLab starting from 13.7, marshalled session keys were being stored in Redis. Moderate Unreviewed
CVE-2021-22194 was published May 24, 2022
An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web... Moderate Unreviewed
CVE-2021-27233 was published May 24, 2022
The /password.html page of the Web management interface of the Acexy Wireless-N WiFi Repeater REV... High Unreviewed
CVE-2021-28937 was published May 24, 2022
Debug message containing addresses of memory transactions in some Intel(R) 10th Generation Core... Moderate Unreviewed
CVE-2020-24491 was published May 24, 2022
A security vulnerability in HPE Unified Data Management (UDM) could allow the local disclosure of... Moderate Unreviewed
CVE-2021-26579 was published May 24, 2022
A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an... High Unreviewed
CVE-2018-19941 was published May 24, 2022
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain the... High Unreviewed
CVE-2022-42956 was published Nov 7, 2022
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage... Moderate Unreviewed
CVE-2020-29500 was published May 24, 2022
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage... Moderate Unreviewed
CVE-2020-29501 was published May 24, 2022
In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users... High Unreviewed
CVE-2020-5805 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database