GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,205

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

169 advisories

Filter by severity

Sort by

Least recently updated

ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x... High Unreviewed

CVE-2020-25178 was published Mar 19, 2022

Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as... High Unreviewed

CVE-2022-0988 was published Mar 26, 2022

Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are... High Unreviewed

CVE-2021-32982 was published Apr 5, 2022

Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in... High Unreviewed

CVE-2021-33022 was published Apr 3, 2022

An information disclosure vulnerability exists in the Web Application functionality of Moxa... High Unreviewed

CVE-2021-40392 was published Apr 15, 2022

Philips Interoperability Solution XDS versions 2.5 through 3.11 and 2018-1 through 2021-1 are... High Unreviewed

CVE-2021-32966 was published May 26, 2022

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine... High Unreviewed

CVE-2022-26077 was published May 26, 2022

Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller... High Unreviewed

CVE-2022-29519 was published Jun 29, 2022

AutomationDirect C-more EA9 HTTP webserver uses an insecure mechanism to transport credentials... High Unreviewed

CVE-2022-2005 was published Sep 1, 2022

Any attempt (good or bad) to log into AutomationDirect Stride Field I/O with a web browser may... High Unreviewed

CVE-2022-2485 was published Sep 1, 2022

** DISPUTED ** A vulnerability was found in whohas. It has been rated as problematic. This issue... High Unreviewed

CVE-2021-4258 was published Dec 19, 2022

Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. They... High Unreviewed

CVE-2022-31204 was published Jul 27, 2022

UPSMON PRO transmits sensitive data in cleartext over HTTP protocol. An unauthenticated remote... High Unreviewed

CVE-2022-38122 was published Nov 10, 2022

A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All... High Unreviewed

CVE-2022-29874 was published May 21, 2022

Cleartext transmission of sensitive information. The following products are affected: Acronis... High Unreviewed

CVE-2022-30994 was published May 19, 2022

Cleartext transmission of sensitive information. The following products are affected: Acronis... High Unreviewed

CVE-2022-30993 was published May 19, 2022

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580,... High Unreviewed

CVE-2019-6845 was published May 24, 2022

GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP... High Unreviewed

CVE-2021-27422 was published Mar 24, 2022

A vulnerability has been identified in Climatix POL909 (AWM module) (All versions < V11.34). The... High Unreviewed

CVE-2021-40366 was published May 24, 2022

A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20... High Unreviewed

CVE-2020-1902 was published May 24, 2022

A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve... High Unreviewed

CVE-2020-25645 was published May 24, 2022

The affected product transmits unencrypted sensitive information, which may allow an attacker to... High Unreviewed

CVE-2020-25155 was published May 24, 2022

Cleartext Transmission of Sensitive Information vulnerability in BASETech GE-131 BT-1837836... High Unreviewed

CVE-2020-27554 was published May 24, 2022

An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below. Its... High Unreviewed

CVE-2020-11718 was published May 24, 2022

A cleartext transmission of sensitive information vulnerability has been reported to affect... High Unreviewed

CVE-2018-19944 was published May 24, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

169 advisories