Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

153 advisories

Loading
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before.... High Unreviewed
CVE-2024-22084 was published Mar 20, 2024
An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011,... High Unreviewed
CVE-2023-49341 was published Mar 9, 2024
SQL injection vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-24375 was published Mar 7, 2024
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform... High Unreviewed
CVE-2023-50957 was published Feb 10, 2024
Prior to v7.4.0, Ember ZNet is vulnerable to a denial of service attack through manipulation of... High Unreviewed
CVE-2023-6874 was published Feb 5, 2024
TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel. High Unreviewed
CVE-2023-27098 was published Jan 9, 2024
The BestWebSoft's Like & Share WordPress plugin before 2.74 discloses the content of password... High Unreviewed
CVE-2023-6250 was published Dec 26, 2023
LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. Cleartext... High Unreviewed
CVE-2023-46384 was published Dec 1, 2023
LOYTEC electronics GmbH LINX-212 firmware 6.2.4 and LINX-151 firmware 7.2.4 are vulnerable to... High Unreviewed
CVE-2023-46386 was published Dec 1, 2023
LOYTEC electronics GmbH LINX-212 6.2.4 and LINX-151 7.2.4 are vulnerable to Insecure Permissions... High Unreviewed
CVE-2023-46388 was published Dec 1, 2023
Zentao Biz version 8.7 and before is vulnerable to Information Disclosure. High Unreviewed
CVE-2023-46376 was published Oct 27, 2023
An issue in ZPE Systems, Inc Nodegrid OS v.5.8.10 thru v.5.8.13 and v.5.10.3 thru v.5.10.5 allows... High Unreviewed
CVE-2023-44037 was published Oct 14, 2023
The firmwaredownload command on Brocade Fabric OS v9.2.0 could log the FTP/SFTP/SCP server... High Unreviewed
CVE-2023-3489 was published Aug 31, 2023
An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. System... High Unreviewed
CVE-2023-31041 was published Aug 14, 2023
Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's... High Unreviewed
CVE-2023-39379 was published Aug 4, 2023
Assmann Digitus Plug&View IP Camera family allows unauthenticated attackers to download a copy of... High Unreviewed
CVE-2023-30146 was published Aug 4, 2023
Element55 KnowMore appliances version 21 and older was discovered to store passwords in plaintext. High Unreviewed
CVE-2023-39144 was published Aug 3, 2023
TeleAdapt RoomCast TA-2400 1.0 through 3.1 suffers from Cleartext Storage of Sensitive... High Unreviewed
CVE-2023-33742 was published Jul 27, 2023
mRemoteNG configuration files can be stored in an encrypted state on disk. mRemoteNG version <=... High Unreviewed
CVE-2023-30367 was published Jul 26, 2023
An issue found in ALBIS Co. ALBIS v.13.6.1 allows a remote attacker to gain access to sensitive... High Unreviewed
CVE-2023-31821 was published Jul 13, 2023
Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214... High Unreviewed
CVE-2023-31408 was published Jul 6, 2023
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain... High Unreviewed
CVE-2023-27243 was published Jun 21, 2023
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the... High Unreviewed
CVE-2023-1897 was published Jun 12, 2023
The Danfoss AK-EM100 stores login credentials in cleartext. High Unreviewed
CVE-2023-22584 was published Jun 11, 2023
Bitwarden Desktop v1.20.0 and above stores the biometric key in plaintext which allows a local... High Unreviewed
CVE-2023-27706 was published Jun 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database