GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
334 advisories
Filter by severity
kedpm 0.5 and 1.0 creates a history file in ~/.kedpm/history that is written in cleartext. All of...
High
Unreviewed
CVE-2017-8296
was published
May 13, 2022
Wireless IP Camera (P2P) WIFICAM devices have an "Apple Production IOS Push Services" private RSA...
High
Unreviewed
CVE-2017-8222
was published
May 13, 2022
Windows 10 version 1607 and Windows Server 2016 allow an elevation of privilege vulnerability due...
High
Unreviewed
CVE-2018-0828
was published
May 13, 2022
Previous releases of the Puppet device_manager module creates configuration files containing...
High
Unreviewed
CVE-2018-11748
was published
May 13, 2022
The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS...
High
Unreviewed
CVE-2018-10286
was published
May 13, 2022
An authentication weakness vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow...
High
Unreviewed
CVE-2018-10355
was published
May 13, 2022
PrinterOn Enterprise 4.1.3 stores the Active Directory bind credentials using base64 encoding,...
High
Unreviewed
CVE-2018-10327
was published
May 13, 2022
Synametrics SynaMan 4.0 build 1488 uses cleartext password storage for SMTP credentials.
High
Unreviewed
CVE-2018-10814
was published
May 13, 2022
Plaintext Storage of Passwords in the administrative console in Dialogic PowerMedia XMS before 3...
High
Unreviewed
CVE-2018-11634
was published
May 13, 2022
Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin...
High
Unreviewed
CVE-2018-11639
was published
May 13, 2022
IBM Security Guardium Big Data Intelligence (SonarG) 3.1 stores user credentials in plain in...
High
Unreviewed
CVE-2018-1377
was published
May 13, 2022
Storing password in recoverable format in safensec.com (SysWatch service) in SAFE'N'SEC...
High
Unreviewed
CVE-2018-13014
was published
May 13, 2022
Squash TM through 1.18.0 presents the cleartext passwords of external services in the...
High
Unreviewed
CVE-2018-16987
was published
May 13, 2022
ChipsBank UMPTool saves the password to the NAND with a simple substitution cipher, which allows...
High
Unreviewed
CVE-2018-19795
was published
May 13, 2022
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue...
High
Unreviewed
CVE-2018-4170
was published
May 13, 2022
An issue was discovered on D-Link DIR-601 B1 2.02NA devices. Being on the same local network as,...
High
Unreviewed
CVE-2018-5708
was published
May 13, 2022
Easy Hosting Control Panel (EHCP) v0.37.12.b allows attackers to obtain sensitive information by...
High
Unreviewed
CVE-2018-6618
was published
May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11...
High
Unreviewed
CVE-2018-4190
was published
May 13, 2022
The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 (k8s-bigip-crtl) passes BIG-IP username and...
High
Unreviewed
CVE-2018-5543
was published
May 13, 2022
An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05...
High
Unreviewed
CVE-2018-7698
was published
May 13, 2022
In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions...
High
Unreviewed
CVE-2018-7782
was published
May 13, 2022
On cSRX Series devices software permission issues in the container filesystem and stored files...
High
Unreviewed
CVE-2022-22251
was published
Oct 18, 2022
Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var...
High
Unreviewed
CVE-2022-29588
was published
May 17, 2022
Prosys OPC UA Simulation Server version prior to v5.3.0-64 and UA Modbus Server versions 1.4.18-5...
High
Unreviewed
CVE-2022-2967
was published
Jan 4, 2023
A flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1...
High
Unreviewed
CVE-2018-1139
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API