GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,184

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

640 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Jenkins Ansible Plugin stores and displays secrets in plain text Moderate

CVE-2023-32982 was published for org.jenkins-ci.plugins:ansible (Maven) May 16, 2023

Clear text secrets returned & Remote system secrets in clear text Moderate Unreviewed

CVE-2024-55928 was published Jan 23, 2025

EnterpriseDB EDB Postgres Advanced Server (EPAS) before 14.6.0 logs unredacted passwords in... High Unreviewed

CVE-2023-31043 was published Apr 23, 2023

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a prints the Brocade SANnav password in... Moderate Unreviewed

CVE-2024-29956 was published Apr 18, 2024

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to... Moderate Unreviewed

CVE-2024-29952 was published Apr 18, 2024

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to... Moderate Unreviewed

CVE-2011-4723 was published May 17, 2022

Sensitive data could be exposed to non- privileged users in a configuration file. Local access... Moderate Unreviewed

CVE-2024-45718 was published Feb 11, 2025

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions), SIPROTEC 5 6MD85 ... Moderate Unreviewed

CVE-2024-53651 was published Feb 11, 2025

Cleartext storage of information in Ivanti Connect Secure before version 22.7R2.6 and Ivanti... Moderate Unreviewed

CVE-2024-13843 was published Feb 11, 2025

IBM ApplinX 11.1 stores sensitive information in cleartext in memory that could be obtained by an... Moderate Unreviewed

CVE-2024-49800 was published Feb 6, 2025

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi... Moderate Unreviewed

CVE-2023-0614 was published Apr 4, 2023

The firmwaredownload command on Brocade Fabric OS v9.2.0 could log the FTP/SFTP/SCP server... High Unreviewed

CVE-2023-3489 was published Aug 31, 2023

Possible information exposure through log file vulnerability where sensitive fields are... Moderate Unreviewed

CVE-2023-31423 was published Aug 31, 2023

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain... Critical Unreviewed

CVE-2025-22896 was published Feb 14, 2025

CalInvocationHandler in Brocade SANnav before 2.3.1b logs sensitive information in clear text.... Moderate Unreviewed

CVE-2024-10404 was published Feb 14, 2025

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record... High Unreviewed

CVE-2025-26495 was published Feb 11, 2025

Jenkins reveals encrypted values of secrets stored in agent configuration to users with Agent/Extended Read permission Moderate

CVE-2025-27623 was published for org.jenkins-ci.main:jenkins-core (Maven) Mar 6, 2025

Jenkins reveals encrypted values of secrets stored in agent configuration to users with Agent/Extended Read permission Moderate

CVE-2025-27622 was published for org.jenkins-ci.main:jenkins-core (Maven) Mar 6, 2025

A vulnerability was found in Thinkware Car Dashcam F800 Pro up to 20250226. It has been rated as... Low Unreviewed

CVE-2025-2120 was published Mar 9, 2025

This vulnerability exists in the Tinxy smart devices due to storage of credentials in plaintext... Moderate Unreviewed

CVE-2025-2189 was published Mar 11, 2025

The NMAP Importer service may expose data store credentials to authorized users of the Windows... Moderate Unreviewed

CVE-2024-23584 was published Apr 9, 2024

Jenkins SonarQube Plugin Stores Passwords in Cleartext Moderate

CVE-2013-5676 was published for org.jenkins-ci.plugins:sonar (Maven) May 17, 2022

Jenkins Zoom Plugin Stores Sensitive Information in Cleartext Moderate

CVE-2025-0142 was published for io.jenkins.plugins:zoom (Maven) Jan 30, 2025

IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed

CVE-2024-25024 was published Aug 15, 2024

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery... High Unreviewed

CVE-2024-12604 was published Mar 10, 2025

Previous 1…22…26 Next

Previous 1 2 … 20 21 22 23 24 25 26 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

640 advisories