GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,854

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

304 advisories

Filter by severity

Sort by

Least recently updated

The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database (DB)... Moderate Unreviewed

CVE-2023-41964 was published Oct 10, 2023

A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security... Moderate Unreviewed

CVE-2023-4066 was published Sep 27, 2023

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4,... Moderate Unreviewed

CVE-2023-2358 was published Sep 27, 2023

A cleartext storage of sensitive information vulnerability [CWE-312] in FortiTester 2.3.0 through... Moderate Unreviewed

CVE-2023-40715 was published Sep 13, 2023

A password management vulnerability in Skyhigh Secure Web Gateway (SWG) in main releases 11.x... Moderate Unreviewed

CVE-2023-4400 was published Sep 13, 2023

An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password... Moderate Unreviewed

CVE-2023-40354 was published Aug 14, 2023

Cleartext storage of sensitive information in Zoom Client SDK for Windows before 5.15.0 may allow... Moderate Unreviewed

CVE-2023-39210 was published Aug 9, 2023

PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user... Moderate Unreviewed

CVE-2023-36136 was published Aug 8, 2023

An issue was discovered in Fujitsu Software Infrastructure Manager (ISM) before 2.8.0.061. The... Moderate Unreviewed

CVE-2023-39903 was published Aug 7, 2023

Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32447 was published Jul 20, 2023

Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32446 was published Jul 20, 2023

Dell Wyse ThinOS versions prior to 2208 (9.3.2102) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32455 was published Jul 20, 2023

Wyse Management Suite versions prior to 4.0 contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32483 was published Jul 20, 2023

Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with... Moderate Unreviewed

CVE-2023-35699 was published Jul 10, 2023

?All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in... Moderate Unreviewed

CVE-2023-3395 was published Jul 3, 2023

IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 stores user credentials in plain clear... Moderate Unreviewed

CVE-2022-33159 was published Jun 15, 2023

An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console... Moderate Unreviewed

CVE-2023-28345 was published May 31, 2023

IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be... Moderate Unreviewed

CVE-2023-22878 was published May 19, 2023

In onSetRuntimePermissionGrantStateByDeviceAdmin of AdminRestrictedPermissionsUtils.java, there... Moderate Unreviewed

CVE-2023-20914 was published May 16, 2023

Cleartext storage of sensitive information exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0... Moderate Unreviewed

CVE-2023-24586 was published May 10, 2023

An issue was discovered in TigerGraph Enterprise Free Edition 3.x. There is logging of user... Moderate Unreviewed

CVE-2023-22949 was published Apr 14, 2023

A vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to... Moderate Unreviewed

CVE-2023-0005 was published Apr 12, 2023

Etherpad <1.8.3 stored passwords used by users insecurely in the database and in log files. This... Moderate Unreviewed

CVE-2020-22783 was published May 24, 2022

Dell EMC PowerConnect 8024, 7000, M6348, M6220, M8024 and M8024-K running firmware versions prior... Moderate Unreviewed

CVE-2019-3753 was published May 24, 2022

qtnx 0.9 stores non-custom SSH keys in a world-readable configuration file. If a user has a world... Moderate Unreviewed

CVE-2011-2916 was published Apr 22, 2022

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

304 advisories