GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
283 advisories
Filter by severity
DEPSTECH WiFi Digital Microscope 3 allows remote attackers to change the SSID and password, and...
High
Unreviewed
CVE-2020-12734
was published
May 24, 2022
Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all...
High
Unreviewed
CVE-2021-22778
was published
May 24, 2022
Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all...
High
Unreviewed
CVE-2021-22780
was published
May 24, 2022
Password autocomplete vulnerability in the web application password field of Hitachi ABB Power...
High
Unreviewed
CVE-2021-35527
was published
May 24, 2022
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting that could...
High
Unreviewed
CVE-2021-20415
was published
May 24, 2022
There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful...
High
Unreviewed
CVE-2021-22370
was published
May 24, 2022
There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful...
High
Unreviewed
CVE-2021-22351
was published
May 24, 2022
User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost....
High
Unreviewed
CVE-2021-35050
was published
May 24, 2022
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie.
High
Unreviewed
CVE-2021-28857
was published
May 24, 2022
D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR...
High
Unreviewed
CVE-2021-34204
was published
May 24, 2022
Brocade SANnav before version 2.1.1 contains an Improper Authentication vulnerability that allows...
High
Unreviewed
CVE-2020-15381
was published
May 24, 2022
An insufficiently protected credentials issue was discovered in Intland codeBeamer ALM 10.x...
High
Unreviewed
CVE-2020-26515
was published
May 24, 2022
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through...
High
Unreviewed
CVE-2020-29322
was published
May 24, 2022
The D-Link router DIR-868L 3.01 is vulnerable to credentials disclosure in telnet service through...
High
Unreviewed
CVE-2020-29321
was published
May 24, 2022
The D-link router DIR-885L-MFC 1.15b02, v1.21b05 is vulnerable to credentials disclosure in...
High
Unreviewed
CVE-2020-29323
was published
May 24, 2022
There is a Credentials Management Errors vulnerability in Huawei Smartphone. Successful...
High
Unreviewed
CVE-2021-22324
was published
May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a...
High
Unreviewed
CVE-2019-4723
was published
May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a...
High
Unreviewed
CVE-2019-4724
was published
May 24, 2022
The NGINX Controller 2.0.0 thru 2.9.0 and 3.x before 3.15.0 Administrator password may be exposed...
High
Unreviewed
CVE-2021-23019
was published
May 24, 2022
IBM Security Guardium 11.2 stores user credentials in plain clear text which can be read by a...
High
Unreviewed
CVE-2021-20389
was published
May 24, 2022
homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and...
High
Unreviewed
CVE-2020-24396
was published
May 24, 2022
A local file inclusion vulnerability in the FileServlet in all SearchBlox before 9.2.2 allows...
High
Unreviewed
CVE-2020-35580
was published
May 24, 2022
In multiple managed switches by WAGO in different versions it is possible to read out the...
High
Unreviewed
CVE-2021-20997
was published
May 24, 2022
An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can...
High
Unreviewed
CVE-2021-3154
was published
May 24, 2022
A vulnerability has been identified in Siveillance Video Open Network Bridge (2020 R3),...
High
Unreviewed
CVE-2021-27392
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API