Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,851
Erlang
36
GitHub Actions
35
Go
2,481
Maven
5,000+
npm
4,098
NuGet
734
pip
3,914
Pub
12
RubyGems
945
Rust
1,016
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

327 advisories

Loading
Insufficiently Protected Credentials vulnerability in ABB Aspect.This issue affects Aspect:... High Unreviewed
CVE-2025-53188 was published Aug 11, 2025
Dell Digital Delivery, versions prior to 5.6.1.0, contains an Insufficiently Protected... High Unreviewed
CVE-2025-38739 was published Aug 4, 2025
CyberData 011209 Intercom does not properly store or protect web server admin credentials. High Unreviewed
CVE-2025-30183 was published Jun 10, 2025
IBM Sterling Partner Engagement Manager 6.1.0, 6.2.0, 6.2.2 JWT secret is stored in public Helm... High Unreviewed
CVE-2025-33093 was published May 7, 2025
A credential exposure vulnerability in Electrolink 500W, 1kW, 2kW Medium DAB Transmitter Web v01... High Unreviewed
CVE-2025-28228 was published Apr 21, 2025
Insufficiently protected credentials in Azure Local Cluster allows an authorized attacker to... High Unreviewed
CVE-2025-26628 was published Apr 8, 2025
The exposure of credentials in the call forwarding configuration module in MeetMe products in... High Unreviewed
CVE-2025-2908 was published Mar 28, 2025
Exposure of password in web-based SSH authentication component in Devolutions Server 2024.3.13... High Unreviewed
CVE-2025-2277 was published Mar 13, 2025
Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability... High Unreviewed
CVE-2025-1886 was published Mar 7, 2025
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote... High Unreviewed
CVE-2024-41770 was published Mar 3, 2025
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote... High Unreviewed
CVE-2024-41771 was published Mar 3, 2025
In JetBrains TeamCity before 2024.12.2 improper Kubernetes connection settings could expose... High Unreviewed
CVE-2025-26492 was published Feb 11, 2025
A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation... High Unreviewed
CVE-2025-0497 was published Jan 30, 2025
A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation... High Unreviewed
CVE-2025-0498 was published Jan 30, 2025
The /WmAdmin/,/invoke/vm.server/login login page in the Integration Server in Software AG... High Unreviewed
CVE-2024-23733 was published Jan 30, 2025
An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with... High Unreviewed
CVE-2024-46480 was published Jan 13, 2025
Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password... High Unreviewed
CVE-2025-21111 was published Jan 8, 2025
Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password... High Unreviewed
CVE-2025-21102 was published Jan 8, 2025
Dell VxVerify, versions prior to x.40.405, contain a Plain-text Password Storage Vulnerability in... High Unreviewed
CVE-2024-53292 was published Dec 11, 2024
TP-Link TL-WR845N(UN)_V4_190219 was discovered to transmit credentials in base64 encoded form,... High Unreviewed
CVE-2024-46341 was published Dec 10, 2024
TP-Link TL-WR845N(UN)_V4_201214, TL-WR845N(UN)_V4_200909 and TL-WR845N(UN)_V4_190219 were... High Unreviewed
CVE-2024-50699 was published Dec 10, 2024
Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. ... High Unreviewed
CVE-2024-51546 was published Dec 5, 2024
A vulnerability in Veeam Backup & Replication allows users with certain operator roles to expose... High Unreviewed
CVE-2024-42457 was published Dec 4, 2024
An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an... High Unreviewed
CVE-2024-51240 was published Nov 5, 2024
Kieback & Peter's DDC4000 series has an insufficiently protected credentials vulnerability, which... High Unreviewed
CVE-2024-43812 was published Oct 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database