GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,604
Composer 4,220
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,334
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,319

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

149 advisories

Filter by severity

Sort by

Least recently updated

The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a ... High Unreviewed

CVE-2021-28374 was published May 24, 2022

IBM Security Verify Information Queue 1.0.6 and 1.0.7 discloses sensitive information in source... High Unreviewed

CVE-2021-20407 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. Some passwords are stored in... High Unreviewed

CVE-2021-27178 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_2g.cfg has cleartext... High Unreviewed

CVE-2021-27175 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_5g.cfg has cleartext... High Unreviewed

CVE-2021-27176 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifi_custom.cfg has... High Unreviewed

CVE-2021-27174 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to find... High Unreviewed

CVE-2021-27140 was published May 24, 2022

In moveInMediaStore of FileSystemProvider.java, there is a possible file exposure due to stale... High Unreviewed

CVE-2021-0337 was published May 24, 2022

An issue was discovered on Geeni GNC-CW028 Camera 2.7.2, Geeni GNC-CW025 Doorbell 2.9.5, Merkury... High Unreviewed

CVE-2020-29001 was published May 24, 2022

IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may include sensitive information in its URLs... High Unreviewed

CVE-2020-5018 was published May 24, 2022

In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users... High Unreviewed

CVE-2020-5805 was published May 24, 2022

An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... High Unreviewed

CVE-2020-24577 was published May 24, 2022

A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an... High Unreviewed

CVE-2018-19941 was published May 24, 2022

An issue was discovered in URVE Build 24.03.2020. The password of an integration user account ... High Unreviewed

CVE-2020-29550 was published May 24, 2022

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an... High Unreviewed

CVE-2020-29583 was published May 24, 2022

An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored... High Unreviewed

CVE-2020-26551 was published May 24, 2022

The installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the... High Unreviewed

CVE-2020-27613 was published May 24, 2022

A cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away... High Unreviewed

CVE-2020-8225 was published May 24, 2022

MiR controllers across firmware versions 2.8.1.1 and before do not encrypt or protect in any way... High Unreviewed

CVE-2020-10273 was published May 24, 2022

D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information. High Unreviewed

CVE-2020-13783 was published May 24, 2022

Universal Robots control box CB 3.1 across firmware versions (tested on 1.12.1, 1.12, 1.11 and 1... High Unreviewed

CVE-2020-10267 was published May 24, 2022

An attacker with low privilege could retrieve usernames and passwords credentials from the new... High Unreviewed

CVE-2019-14890 was published May 24, 2022

Dell ImageAssist versions prior to 8.7.15 contain an information disclosure vulnerability. Dell... High Unreviewed

CVE-2019-3767 was published May 24, 2022

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in... High Unreviewed

CVE-2019-15023 was published May 24, 2022

In Lenovo xClarity Administrator versions earlier than 2.1.0, an attacker that gains access to... High Unreviewed

CVE-2018-9065 was published May 13, 2022

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

149 advisories