GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
292 advisories
Filter by severity
Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A...
High
Unreviewed
CVE-2022-26856
was published
Apr 22, 2022
Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701,...
High
Unreviewed
CVE-2022-29457
was published
Apr 19, 2022
Zoho ManageEngine ADAudit Plus before 7055 allows authenticated Privilege Escalation on...
High
Unreviewed
CVE-2022-24978
was published
Apr 6, 2022
Kyocera multifunction printers running vulnerable versions of Net View unintentionally expose...
High
Unreviewed
CVE-2022-1026
was published
Apr 5, 2022
The programming protocol allows for a previously entered password and lock state to be read by an...
High
Unreviewed
CVE-2021-32978
was published
Apr 5, 2022
Philips Vue PACS versions 12.2.x.x and prior transmits or stores authentication credentials, but...
High
Unreviewed
CVE-2021-33024
was published
Apr 3, 2022
The Archer RSS feed integration for Archer 6.x through 6.9 SP1 (6.9.1.0) is affected by an...
High
Unreviewed
CVE-2022-26948
was published
Mar 31, 2022
An issue has been discovered in GitLab affecting all versions starting from 14.6 before 14.6.5,...
High
Unreviewed
CVE-2022-0738
was published
Mar 29, 2022
Settings/network settings/wireless settings on the Alecto DVC-215IP camera version 63.1.1.173 and...
High
Unreviewed
CVE-2022-24610
was published
Feb 25, 2022
A CWE-522: Insufficiently Protected Credentials vulnerability exists that could cause Sensitive...
High
Unreviewed
CVE-2021-22798
was published
Feb 12, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS...
High
Unreviewed
CVE-2021-40360
was published
Feb 10, 2022
Netgear RAX43 version 1.0.3.96 does not have sufficient protections to the UART interface. A...
High
Unreviewed
CVE-2021-20168
was published
Dec 31, 2021
Netgear Nighthawk R6700 version 1.0.4.120 stores sensitive information in plaintext. All...
High
Unreviewed
CVE-2021-45077
was published
Dec 31, 2021
Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in...
High
Unreviewed
CVE-2021-20826
was published
Dec 25, 2021
Parallels Remote Application Server (RAS) allows a local attacker to retrieve certain profile...
High
Unreviewed
CVE-2020-8968
was published
Dec 18, 2021
There is a Credentials Management Errors vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37075
was published
Dec 9, 2021
Allegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary...
High
Unreviewed
CVE-2021-43978
was published
Dec 9, 2021
ProTip!
Advisories are also available from the
GraphQL API