Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

544 advisories

Loading
A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco... Moderate Unreviewed
CVE-2024-20448 was published Oct 2, 2024
In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive... High Unreviewed
CVE-2024-25661 was published Oct 1, 2024
Cleartext storage of passwords in Infinera TNMS (Transcend Network Management System) Server 19... Moderate Unreviewed
CVE-2024-25658 was published Oct 1, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information... Moderate Unreviewed
CVE-2024-28807 was published Sep 30, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Sensitive information inside diagnostic... Moderate Unreviewed
CVE-2024-28810 was published Sep 30, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive password in... High Unreviewed
CVE-2024-28809 was published Sep 30, 2024
Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within... High Unreviewed
CVE-2024-8459 was published Sep 30, 2024
Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp... Critical Unreviewed
CVE-2024-8644 was published Sep 27, 2024
A flaw was found in oVirt. A user with administrator privileges, including users with the... Moderate Unreviewed
CVE-2024-7259 was published Sep 26, 2024
The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in... Low Unreviewed
CVE-2023-5359 was published Sep 25, 2024
The configuration file stores credentials in cleartext. An attacker with local access rights can... Moderate Unreviewed
CVE-2024-6785 was published Sep 21, 2024
A vulnerability, which was classified as problematic, was found in code-projects Blood Bank... Moderate Unreviewed
CVE-2024-9040 was published Sep 20, 2024
Kastle Systems firmware prior to May 1, 2024, stored machine credentials in cleartext, which may... High Unreviewed
CVE-2024-45862 was published Sep 19, 2024
An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to... Moderate Unreviewed
CVE-2024-41629 was published Sep 12, 2024
No-IP Dynamic Update Client (DUC) v3.x uses cleartext credentials that may occur on a command... Critical Unreviewed
CVE-2024-40457 was published Sep 12, 2024
A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the... Moderate Unreviewed
CVE-2024-8689 was published Sep 11, 2024
A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting... Moderate Unreviewed
CVE-2024-35282 was published Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: dcp: fix leak... Moderate Unreviewed
CVE-2024-45004 was published Sep 4, 2024
Cleartext storage of sensitive information vulnerability exists in WindLDR and WindO/I-NV4. If... High Unreviewed
CVE-2024-41716 was published Sep 4, 2024
Tina search token leak via lock file in TinaCMS High
CVE-2024-45391 was published for @tinacms/cli (npm) Sep 3, 2024
kldavis4 mattsbennett
Cleartext Storage of Sensitive Information vulnerability in NAC Telecommunication Systems Inc.... High Unreviewed
CVE-2024-6921 was published Sep 2, 2024
A vulnerability identified in storing and reusing information in Advance Authentication. This... High Unreviewed
CVE-2021-22509 was published Aug 28, 2024
Mattermost doesn't redact remote users' original email addresses Moderate
CVE-2024-32939 was published for github.com/mattermost/mattermost/server/v8 (Go) Aug 22, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed
CVE-2024-25024 was published Aug 15, 2024
An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local... Moderate Unreviewed
CVE-2024-5916 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database