GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,600
Composer 4,218
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,244

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

149 advisories

Filter by severity

Sort by

Least recently updated

This vulnerability exists in Philips lighting devices due to storage of Wi-Fi credentials in... High Unreviewed

CVE-2024-9991 was published Oct 25, 2024

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test... High Unreviewed

CVE-2024-8070 was published Oct 13, 2024

A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition... High Unreviewed

CVE-2024-9466 was published Oct 9, 2024

In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive... High Unreviewed

CVE-2024-25661 was published Oct 1, 2024

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive password in... High Unreviewed

CVE-2024-28809 was published Sep 30, 2024

Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within... High Unreviewed

CVE-2024-8459 was published Sep 30, 2024

Kastle Systems firmware prior to May 1, 2024, stored machine credentials in cleartext, which may... High Unreviewed

CVE-2024-45862 was published Sep 19, 2024

Cleartext storage of sensitive information vulnerability exists in WindLDR and WindO/I-NV4. If... High Unreviewed

CVE-2024-41716 was published Sep 4, 2024

Cleartext Storage of Sensitive Information vulnerability in NAC Telecommunication Systems Inc.... High Unreviewed

CVE-2024-6921 was published Sep 2, 2024

A vulnerability identified in storing and reusing information in Advance Authentication. This... High Unreviewed

CVE-2021-22509 was published Aug 28, 2024

A vulnerability has been identified in Omnivise T3000 Application Server (All versions), Omnivise... High Unreviewed

CVE-2024-38877 was published Aug 2, 2024

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of FTP credentials... High Unreviewed

CVE-2024-41691 was published Jul 26, 2024

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of default... High Unreviewed

CVE-2024-41690 was published Jul 26, 2024

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due lack of encryption in storing... High Unreviewed

CVE-2024-41688 was published Jul 26, 2024

An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext... High Unreviewed

CVE-2019-16638 was published Jul 16, 2024

The Kiuwan Local Analyzer (KLA) Java scanning application contains several hard-coded secrets in... High Unreviewed

CVE-2023-49113 was published Jun 20, 2024

An unauthorized user is able to gain access to sensitive data, including credentials, by... High Unreviewed

CVE-2024-38280 was published Jun 13, 2024

Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext. High Unreviewed

CVE-2024-36790 was published Jun 7, 2024

Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to... High Unreviewed

CVE-2024-28327 was published Apr 26, 2024

Electrolink transmitters store credentials in clear-text. Use of these credentials could allow... High Unreviewed

CVE-2024-3742 was published Apr 19, 2024

An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive information... High Unreviewed

CVE-2024-28387 was published Mar 25, 2024

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before.... High Unreviewed

CVE-2024-22084 was published Mar 20, 2024

An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011,... High Unreviewed

CVE-2023-49341 was published Mar 9, 2024

SQL injection vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to obtain sensitive... High Unreviewed

CVE-2024-24375 was published Mar 7, 2024

IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform... High Unreviewed

CVE-2023-50957 was published Feb 10, 2024

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

149 advisories