Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

157 advisories

Loading
Motorola SBG901 SBG901-2.10.1.1-GA-00-581-NOSH, SBG941 SBG941-2.11.0.0-GA-07-624-NOSH, and... Critical Unreviewed
CVE-2018-20399 was published May 13, 2022
Ubee DVW2108 6.28.1017 and DVW2110 6.28.2012 devices allow remote attackers to discover... Critical Unreviewed
CVE-2018-20400 was published May 13, 2022
D-Link DCM-604 DCM604_C1_ViaCabo_1.04_20130606 and DCM-704 EU_DCM-704_1.10 devices allow remote... Critical Unreviewed
CVE-2018-20389 was published May 13, 2022
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to... Critical Unreviewed
CVE-2018-20439 was published May 13, 2022
Technicolor TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT devices allow remote attackers to... Critical Unreviewed
CVE-2018-20443 was published May 13, 2022
Technicolor TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover Wi-Fi credentials... Critical Unreviewed
CVE-2018-20441 was published May 13, 2022
Insecure Cryptographic Storage of credentials in com.vestiacom.qbeecamera_preferences.xml in the... Critical Unreviewed
CVE-2018-16223 was published May 13, 2022
Battelle V2I Hub 2.5.1 could allow a remote attacker to obtain sensitive information, caused by... Critical Unreviewed
CVE-2018-1000627 was published May 13, 2022
An issue was discovered on D-Link DIR-809 A1 through 1.09, A2 through 1.11, and Guest Zone... Critical Unreviewed
CVE-2018-14081 was published May 13, 2022
ubiQuoss Switch VP5208A creates a bcm_password file at /cgi-bin/ with the user credentials in... Critical Unreviewed
CVE-2018-10024 was published May 13, 2022
Cleartext password storage exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices... Critical Unreviewed
CVE-2017-8837 was published May 13, 2022
Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 have cleartext credentials in... Critical Unreviewed
CVE-2017-6532 was published May 13, 2022
On Wireless IP Camera (P2P) WIFICAM devices, access to .ini files (containing credentials) is not... Critical Unreviewed
CVE-2017-8225 was published May 13, 2022
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text... Critical Unreviewed
CVE-2017-7933 was published May 13, 2022
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed
CVE-2017-5140 was published May 13, 2022
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed
CVE-2017-5139 was published May 13, 2022
Jenkins SSH Plugin user passwords for encrypted SSH keys stored in plaintext Critical
CVE-2017-1000245 was published for org.jenkins-ci.plugins:ssh (Maven) May 13, 2022
Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be obtained by an unauthenticated... Critical Unreviewed
CVE-2017-17106 was published May 13, 2022
dataTaker DT8x dEX 1.72.007 allows remote attackers to compose programs or schedules, for... Critical Unreviewed
CVE-2017-11349 was published May 13, 2022
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 do not sufficiently... Critical Unreviewed
CVE-2017-3192 was published May 13, 2022
A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC... Critical Unreviewed
CVE-2017-7925 was published May 13, 2022
A Plaintext Storage of a Password issue was discovered in Moxa OnCell G3110-HSPA Version 1.3... Critical Unreviewed
CVE-2017-7913 was published May 13, 2022
An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated... Critical Unreviewed
CVE-2017-11510 was published May 13, 2022
In Ice Qube Thermal Management Center versions prior to version 4.13, passwords are stored in... Critical Unreviewed
CVE-2017-16714 was published May 13, 2022
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The... Critical Unreviewed
CVE-2018-17900 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database