Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

18 advisories

Loading
The WP Mail SMTP plugin for WordPress is vulnerable to information exposure in all versions up to... Low Unreviewed
CVE-2024-6694 was published Jul 20, 2024
Under certain circumstances the web interface users credentials may be recovered by an... Moderate Unreviewed
CVE-2024-32932 was published Jul 2, 2024
Under certain circumstances the Linux users credentials may be recovered by an authenticated user. Moderate Unreviewed
CVE-2024-32756 was published Jul 2, 2024
The key used to encrypt passwords stored in the database can be found in the CyberPower... Moderate Unreviewed
CVE-2024-32042 was published May 15, 2024
Claris International has successfully resolved an issue of potentially exposing password... Moderate Unreviewed
CVE-2023-42955 was published May 14, 2024
Use of reversible password encryption algorithm allows attackers to decrypt passwords. ... Moderate Unreviewed
CVE-2024-3543 was published May 2, 2024
Unitronics Vision Standard line of controllers allow the Information Mode password to be... High Unreviewed
CVE-2024-1480 was published Apr 20, 2024
IBM OpenPages with Watson 8.3 and 9.0 could provide weaker than expected security in a OpenPages... Moderate Unreviewed
CVE-2023-38738 was published Jan 19, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... Moderate Unreviewed
CVE-2023-31001 was published Jan 11, 2024
A vulnerability has been identified in NPort 6000 Series, making the authentication mechanism... High Unreviewed
CVE-2023-5627 was published Nov 1, 2023
Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4,... Moderate Unreviewed
CVE-2023-2358 was published Sep 27, 2023
The Alaris Infusion Central software, versions 1.1 to 1.3.2, may contain a recoverable password... High Unreviewed
CVE-2022-47376 was published Jun 13, 2023
A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering... Moderate Unreviewed
CVE-2023-31150 was published May 10, 2023
Akuvox E11 uses a weak encryption algorithm for stored passwords and uses a hard-coded password... Critical Unreviewed
CVE-2023-0353 was published Mar 13, 2023
A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in... Critical Unreviewed
CVE-2022-32519 was published Jan 31, 2023
Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical... Moderate Unreviewed
CVE-2022-46142 was published Dec 13, 2022
ZOLL Defibrillator Dashboard, v prior to 2.2,The application allows users to store their... High Unreviewed
CVE-2021-27485 was published May 24, 2022
The Redis data structure component used in ABB eSOMS versions 6.0 to 6.0.2 stores credentials in... Low Unreviewed
CVE-2019-19096 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API