Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611... Low Unreviewed
CVE-2025-6526 was published Jun 26, 2025
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are... Low Unreviewed
CVE-2025-27192 was published Apr 8, 2025
A Credential Disclosure vulnerability exists where an administrator could extract the stored SMTP... Low Unreviewed
CVE-2025-0760 was published Feb 26, 2025
There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed
CVE-2020-9250 was published Dec 20, 2024
A security vulnerability in HPE IceWall products could be exploited remotely to cause... Low Unreviewed
CVE-2024-11856 was published Dec 2, 2024
HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header.  This... Low Unreviewed
CVE-2024-30119 was published Jun 15, 2024
Dell Update Manager Plugin, versions 1.4.0 through 1.5.0, contains a Plain-text Password Storage... Low Unreviewed
CVE-2024-28971 was published May 8, 2024
Sensitive information disclosure due to insufficient token field masking. The following products... Low Unreviewed
CVE-2023-44158 was published Sep 27, 2023
Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in... Low Unreviewed
CVE-2020-7299 was published May 24, 2022
IBM Security Guardium Big Data Intelligence (SonarG) 4.0 stores user credentials in plain in... Low Unreviewed
CVE-2019-4307 was published May 24, 2022
An information disclosure vulnerability [CWE-200] in FortiAnalyzerVM and FortiManagerVM versions... Low Unreviewed
CVE-2021-36170 was published May 24, 2022
An issue was discovered in the Login Password feature of the Password Manager component in Avast... Low Unreviewed
CVE-2020-15024 was published May 24, 2022
A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and... Low Unreviewed
CVE-2020-15791 was published May 24, 2022
Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac... Low Unreviewed
CVE-2020-7306 was published May 24, 2022
Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac... Low Unreviewed
CVE-2020-7307 was published May 24, 2022
An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4. When... Low Unreviewed
CVE-2020-17489 was published May 24, 2022
DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same... Low Unreviewed
CVE-2020-15062 was published May 24, 2022
TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same... Low Unreviewed
CVE-2020-15054 was published May 24, 2022
Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same... Low Unreviewed
CVE-2020-15058 was published May 24, 2022
"BigFix Platform is storing clear text credentials within the system's memory. An attacker who is... Low Unreviewed
CVE-2020-4095 was published May 24, 2022
BIOTRONIK CardioMessenger II, The affected products use individual per-device credentials that... Low Unreviewed
CVE-2019-18256 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2020-14427 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2020-14431 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2020-14426 was published May 24, 2022
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects... Low Unreviewed
CVE-2020-14430 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database