GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
666
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
170 advisories
Filter by severity
Advantech Spectre RT ERT351 Versions 5.1.3 and prior logins and passwords are transmitted in...
High
Unreviewed
CVE-2019-18231
was published
May 24, 2022
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic...
High
Unreviewed
CVE-2021-22702
was published
May 24, 2022
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic...
High
Unreviewed
CVE-2021-22703
was published
May 24, 2022
In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a...
High
Unreviewed
CVE-2021-27209
was published
May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a remote attacker to obtain...
High
Unreviewed
CVE-2021-20409
was published
May 24, 2022
The affected Reolink P2P products do not sufficiently protect data transferred between the local...
High
Unreviewed
CVE-2020-25169
was published
May 24, 2022
A cleartext transmission of sensitive information vulnerability has been reported to affect...
High
Unreviewed
CVE-2018-19944
was published
May 24, 2022
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below. Its...
High
Unreviewed
CVE-2020-11718
was published
May 24, 2022
Cleartext Transmission of Sensitive Information vulnerability in BASETech GE-131 BT-1837836...
High
Unreviewed
CVE-2020-27554
was published
May 24, 2022
The affected product transmits unencrypted sensitive information, which may allow an attacker to...
High
Unreviewed
CVE-2020-25155
was published
May 24, 2022
A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve...
High
Unreviewed
CVE-2020-25645
was published
May 24, 2022
A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20...
High
Unreviewed
CVE-2020-1902
was published
May 24, 2022
D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of Sensitive Information.
High
Unreviewed
CVE-2020-13787
was published
May 24, 2022
The Administration page on Connect Box EuroDOCSIS 3.0 Voice Gateway CH7465LG-NCIP-6.12.18.25-2p6...
High
Unreviewed
CVE-2019-19967
was published
May 24, 2022
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580,...
High
Unreviewed
CVE-2019-6845
was published
May 24, 2022
The Deep Security Manager application (Versions 10.0, 11.0 and 12.0), when configured in a...
High
Unreviewed
CVE-2019-15626
was published
May 24, 2022
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, sends the login...
High
Unreviewed
CVE-2019-9532
was published
May 24, 2022
The Nulock application 1.5.0 for mobile devices sends a cleartext password over Bluetooth, which...
High
Unreviewed
CVE-2019-16924
was published
May 24, 2022
The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext...
High
Unreviewed
CVE-2019-15135
was published
May 24, 2022
One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which...
High
Unreviewed
CVE-2019-13498
was published
May 24, 2022
JetBrains Ktor framework (created using the Kotlin IDE template) versions before 1.1.0 were...
High
Unreviewed
CVE-2019-10102
was published
May 24, 2022
IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 is missing the HTTP Strict...
High
Unreviewed
CVE-2019-4162
was published
May 24, 2022
OnCommand Unified Manager 7-Mode prior to version 5.2.4 shipped without certain HTTP Security...
High
Unreviewed
CVE-2019-5494
was published
May 24, 2022
Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers...
High
Unreviewed
CVE-2019-5496
was published
May 24, 2022
A cleartext transmission of sensitive information vulnerability in Fortinet FortiManager 5.2.0...
High
Unreviewed
CVE-2018-1360
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API