GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,870
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,499
Maven 5,933
npm 4,141
NuGet 735
pip 3,945
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,466

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

632 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1... Moderate Unreviewed

CVE-2020-29380 was published May 24, 2022

Quick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text. Moderate Unreviewed

CVE-2020-27586 was published May 24, 2022

BigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https... Moderate Unreviewed

CVE-2020-14248 was published May 24, 2022

An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of... Moderate Unreviewed

CVE-2020-13528 was published May 24, 2022

An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below. Its... High Unreviewed

CVE-2020-11718 was published May 24, 2022

The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower stores and... Critical Unreviewed

CVE-2020-25190 was published May 24, 2022

A cleartext transmission of sensitive information vulnerability has been reported to affect... High Unreviewed

CVE-2018-19944 was published May 24, 2022

IBM API Connect 5.0.0.0 through 5.0.8.10 could potentially leak sensitive information or allow... Critical Unreviewed

CVE-2020-4899 was published May 24, 2022

IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive... Moderate Unreviewed

CVE-2020-4893 was published May 24, 2022

IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2020-4969 was published May 24, 2022

The affected Reolink P2P products do not sufficiently protect data transferred between the local... High Unreviewed

CVE-2020-25169 was published May 24, 2022

An internal product security audit of Lenovo XClarity Administrator (LXCA) prior to version 3.1.0... Moderate Unreviewed

CVE-2020-8355 was published May 24, 2022

For MongoDB Ops Manager 4.2.X with multiple OM application servers, that have SSL turned on for... Moderate Unreviewed

CVE-2021-20335 was published May 24, 2022

IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a remote attacker to obtain... High Unreviewed

CVE-2021-20409 was published May 24, 2022

In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a... High Unreviewed

CVE-2021-27209 was published May 24, 2022

Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote... Moderate Unreviewed

CVE-2020-25605 was published May 24, 2022

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic... High Unreviewed

CVE-2021-22702 was published May 24, 2022

A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic... High Unreviewed

CVE-2021-22703 was published May 24, 2022

Cleartext transmission of sensitive information vulnerability in synorelayd in Synology... Moderate Unreviewed

CVE-2021-26564 was published May 24, 2022

Cleartext transmission of sensitive information vulnerability in synorelayd in Synology... Moderate Unreviewed

CVE-2021-26565 was published May 24, 2022

Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology... Moderate Unreviewed

CVE-2021-26560 was published May 24, 2022

An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional... Moderate Unreviewed

CVE-2020-8356 was published May 24, 2022

An internal product security audit of LXCO, prior to version 1.2.2, discovered that credentials... Moderate Unreviewed

CVE-2021-3417 was published May 24, 2022

Advantech Spectre RT ERT351 Versions 5.1.3 and prior logins and passwords are transmitted in... High Unreviewed

CVE-2019-18231 was published May 24, 2022

Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1... High Unreviewed

CVE-2021-27194 was published May 24, 2022

Previous 1…10…26 Next

Previous 1 2 … 8 9 10 11 12 … 25 26 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

632 advisories