Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

349 advisories

Loading
D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR... High Unreviewed
CVE-2021-34204 was published May 24, 2022
Brocade SANnav before version 2.1.1 contains an Improper Authentication vulnerability that allows... High Unreviewed
CVE-2020-15381 was published May 24, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2),... High Unreviewed
CVE-2022-38465 was published Oct 11, 2022
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow... High Unreviewed
CVE-2021-1392 was published May 24, 2022
KACO New Energy XP100U Up to XP-JAVA 2.0 is affected by incorrect access control. Credentials... High Unreviewed
CVE-2021-3252 was published May 24, 2022
An issue was discovered in the CasAuth extension for MediaWiki through 1.35.1. Due to improper... High Unreviewed
CVE-2020-35623 was published May 24, 2022
MicroSeven MYM71080i-B 2.0.5 through 2.0.20 devices send admin credentials in cleartext to pnp... High Unreviewed
CVE-2021-29255 was published May 24, 2022
The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 stores authentication... High Unreviewed
CVE-2021-27187 was published May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3).... High Unreviewed
CVE-2020-25235 was published May 24, 2022
An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. Authentication is not... High Unreviewed
CVE-2020-13856 was published May 24, 2022
Stored XSS in InterMind iMind Server through 3.13.65 allows any user to hijack another user's... High Unreviewed
CVE-2020-25399 was published May 24, 2022
HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An... High Unreviewed
CVE-2020-14246 was published May 24, 2022
The API in the Push extension for MediaWiki through 1.35 used cleartext for ApiPush credentials,... High Unreviewed
CVE-2020-29005 was published May 24, 2022
ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by... High Unreviewed
CVE-2020-6882 was published May 24, 2022
In S+ Operations and S+ Historian, the passwords of internal users (not Windows Users) are... High Unreviewed
CVE-2020-24680 was published May 24, 2022
AdRem NetCrunch 10.6.0.4587 allows Credentials Disclosure. Every user can read the BSD, Linux,... High Unreviewed
CVE-2019-14483 was published May 24, 2022
A CWE-522: Insufficiently Protected Credentials vulnerability exists in EcoStruxure Geo SCADA... High Unreviewed
CVE-2020-28219 was published May 24, 2022
An improper webserver configuration on Plum IK-401 devices with firmware before 1.02 allows an... High Unreviewed
CVE-2020-28946 was published May 24, 2022
Mutt before 2.0.2 and NeoMutt before 2020-11-20 did not ensure that $ssl_force_tls was processed... High Unreviewed
CVE-2020-28896 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... High Unreviewed
CVE-2020-26906 was published May 24, 2022
Playground Sessions v2.5.582 (and earlier) for Windows, stores the user credentials in plain text... High Unreviewed
CVE-2020-24227 was published May 24, 2022
RVToolsPasswordEncryption.exe in RVTools 4.0.6 allows users to encrypt passwords to be used in... High Unreviewed
CVE-2020-27688 was published May 24, 2022
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi... High Unreviewed
CVE-2020-27888 was published May 24, 2022
An issue was discovered in Aviatrix Controller before R5.3.1151. An encrypted file containing... High Unreviewed
CVE-2020-26550 was published May 24, 2022
Insufficiently protected credentials in the Intel(R) QAT for Linux before version 1.7.l.4.10.0... High Unreviewed
CVE-2020-12333 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database