Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

162 advisories

Loading
Cleartext password storage exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices... Critical Unreviewed
CVE-2017-8837 was published May 13, 2022
On Wireless IP Camera (P2P) WIFICAM devices, access to .ini files (containing credentials) is not... Critical Unreviewed
CVE-2017-8225 was published May 13, 2022
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text... Critical Unreviewed
CVE-2017-7933 was published May 13, 2022
Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 have cleartext credentials in... Critical Unreviewed
CVE-2017-6532 was published May 13, 2022
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed
CVE-2017-5139 was published May 13, 2022
An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed
CVE-2017-5140 was published May 13, 2022
Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be obtained by an unauthenticated... Critical Unreviewed
CVE-2017-17106 was published May 13, 2022
dataTaker DT8x dEX 1.72.007 allows remote attackers to compose programs or schedules, for... Critical Unreviewed
CVE-2017-11349 was published May 13, 2022
An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated... Critical Unreviewed
CVE-2017-11510 was published May 13, 2022
In Ice Qube Thermal Management Center versions prior to version 4.13, passwords are stored in... Critical Unreviewed
CVE-2017-16714 was published May 13, 2022
D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 do not sufficiently... Critical Unreviewed
CVE-2017-3192 was published May 13, 2022
A vulnerability in the AutoVNF tool for the Cisco Ultra Services Framework could allow an... Critical Unreviewed
CVE-2017-6709 was published May 13, 2022
A Plaintext Storage of a Password issue was discovered in Moxa OnCell G3110-HSPA Version 1.3... Critical Unreviewed
CVE-2017-7913 was published May 13, 2022
A Password in Configuration File issue was discovered in Dahua DH-IPC-HDBW23A0RN-ZS, DH-IPC... Critical Unreviewed
CVE-2017-7925 was published May 13, 2022
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The... Critical Unreviewed
CVE-2018-17900 was published May 13, 2022
In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23,... Critical Unreviewed
CVE-2018-7518 was published May 13, 2022
In the web application in BeaconMedaes TotalAlert Scroll Medical Air Systems running software... Critical Unreviewed
CVE-2018-7510 was published May 13, 2022
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON... Critical Unreviewed
CVE-2018-8851 was published May 13, 2022
The Olive Tree Ftp Server application 1.32 for Android has Insecure Data Storage because a... Critical Unreviewed
CVE-2018-11544 was published May 13, 2022
Kibana versions 4.0 to 4.6, 5.0 to 5.6.12, and 6.0 to 6.4.2 contain an error in the way... Critical Unreviewed
CVE-2018-17245 was published May 13, 2022
Platform dependent weakness. This issue only impacts iSeries platforms. On these platforms, in... Critical Unreviewed
CVE-2019-6609 was published May 13, 2022
IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database... Critical Unreviewed
CVE-2019-4059 was published May 13, 2022
A vulnerability was found in Portainer before 1.20.0. Portainer stores LDAP credentials,... Critical Unreviewed
CVE-2018-19466 was published May 13, 2022
An issue was discovered on Xiaomi Mi A1 tissot_sprout:8.1.0/OPM1.171019.026/V9.6.4.0.ODHMIFE... Critical Unreviewed
CVE-2018-18698 was published May 13, 2022
Copay Bitcoin Wallet version 5.01 to 5.1.0 included. contains a Other/Unknown vulnerability in... Critical Unreviewed
CVE-2018-1000851 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database