GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,529

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

153 advisories

Filter by severity

Sort by

Least recently updated

Cleartext storage of sensitive information in multiple versions of Octopus Server where in... High Unreviewed

CVE-2021-30183 was published May 24, 2022

In multiple managed switches by WAGO in different versions the webserver cookies of the web based... High Unreviewed

CVE-2021-20995 was published May 24, 2022

In Hardware Sentry KM before 10.0.01 for BMC PATROL, a cleartext password may be discovered after... High Unreviewed

CVE-2021-31791 was published May 24, 2022

The /password.html page of the Web management interface of the Acexy Wireless-N WiFi Repeater REV... High Unreviewed

CVE-2021-28937 was published May 24, 2022

The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a ... High Unreviewed

CVE-2021-28374 was published May 24, 2022

IBM Security Verify Information Queue 1.0.6 and 1.0.7 discloses sensitive information in source... High Unreviewed

CVE-2021-20407 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_2g.cfg has cleartext... High Unreviewed

CVE-2021-27175 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_5g.cfg has cleartext... High Unreviewed

CVE-2021-27176 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. Some passwords are stored in... High Unreviewed

CVE-2021-27178 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. wifi_custom.cfg has... High Unreviewed

CVE-2021-27174 was published May 24, 2022

An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to find... High Unreviewed

CVE-2021-27140 was published May 24, 2022

In moveInMediaStore of FileSystemProvider.java, there is a possible file exposure due to stale... High Unreviewed

CVE-2021-0337 was published May 24, 2022

An issue was discovered on Geeni GNC-CW028 Camera 2.7.2, Geeni GNC-CW025 Doorbell 2.9.5, Merkury... High Unreviewed

CVE-2020-29001 was published May 24, 2022

In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users... High Unreviewed

CVE-2020-5805 was published May 24, 2022

IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may include sensitive information in its URLs... High Unreviewed

CVE-2020-5018 was published May 24, 2022

An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... High Unreviewed

CVE-2020-24577 was published May 24, 2022

A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an... High Unreviewed

CVE-2018-19941 was published May 24, 2022

An issue was discovered in URVE Build 24.03.2020. The password of an integration user account ... High Unreviewed

CVE-2020-29550 was published May 24, 2022

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an... High Unreviewed

CVE-2020-29583 was published May 24, 2022

An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored... High Unreviewed

CVE-2020-26551 was published May 24, 2022

The installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the... High Unreviewed

CVE-2020-27613 was published May 24, 2022

A cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away... High Unreviewed

CVE-2020-8225 was published May 24, 2022

MiR controllers across firmware versions 2.8.1.1 and before do not encrypt or protect in any way... High Unreviewed

CVE-2020-10273 was published May 24, 2022

D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information. High Unreviewed

CVE-2020-13783 was published May 24, 2022

Universal Robots control box CB 3.1 across firmware versions (tested on 1.12.1, 1.12, 1.11 and 1... High Unreviewed

CVE-2020-10267 was published May 24, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

153 advisories