Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,521
Maven
5,000+
npm
5,000+
NuGet
912
pip
4,768
Pub
13
RubyGems
1,036
Rust
1,229
Swift
53
Unreviewed advisories
All unreviewed
5,000+

707 advisories

Loading
Insecure Storage of Sensitive Information vulnerability in Birtech Information Technologies... Moderate Unreviewed
CVE-2025-10464 was published Feb 9, 2026
FUXA Unauthenticated Exposure of Plaintext Database Credentials Critical
CVE-2026-25751 was published for fuxa-server (npm) Feb 5, 2026
wodzen Credited to wodzen
IBM Concert 1.0.0 through 2.1.0 stores potentially sensitive information in log files that could... Moderate Unreviewed
CVE-2025-33081 was published Feb 4, 2026
A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection... Moderate Unreviewed
CVE-2025-12774 was published Feb 3, 2026
A vulnerability in Brocade SANnav before 2.4.0b prints the Password-Based Encryption (PBE) key... High Unreviewed
CVE-2025-12679 was published Feb 3, 2026
Brocade SANnav before 2.4.0b logs the Brocade Fabric OS Switch admin password on the SANnav... High Unreviewed
CVE-2025-12772 was published Feb 3, 2026
Cleartext Storage of Sensitive Information vulnerability in OpenText™ Vertica allows Retrieve... Moderate Unreviewed
CVE-2024-9432 was published Jan 30, 2026
With physical access to the device and enough time an attacker can desolder the flash memory,... High Unreviewed
CVE-2025-59105 was published Jan 26, 2026
The web server of the Access Manager offers a functionality to download a backup of the local... Moderate Unreviewed
CVE-2025-59102 was published Jan 26, 2026
Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0,... Moderate Unreviewed
CVE-2026-22276 was published Jan 23, 2026
A security issue was discovered within the legacy Ansible playbook component of Verve Asset... High Unreviewed
CVE-2025-14377 was published Jan 20, 2026
FaceSentry Access Control System 6.4.8 contains a cleartext password storage vulnerability that... Moderate Unreviewed
CVE-2019-25279 was published Jan 8, 2026
A flaw has been found in ZZCMS 2025. Affected by this vulnerability is an unknown functionality... Moderate Unreviewed
CVE-2025-14836 was published Dec 18, 2025
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GT Designer3... Moderate Unreviewed
CVE-2025-11009 was published Dec 17, 2025
The mobile application was found to contain stored credentials for the network it was developed... Critical Unreviewed
CVE-2025-65826 was published Dec 10, 2025
SpinetiX Fusion Digital Signage 3.4.8 contains an unauthenticated information disclosure... High Unreviewed
CVE-2020-36887 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34428 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34427 was published Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67638 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67637 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
R Radio Network FM Transmitter 1.07 allows unauthenticated attackers to access the admin user's... High Unreviewed
CVE-2024-58277 was published Dec 4, 2025
Abacre Restaurant Point of Sale (POS) up to 15.0.0.1656 are vulnerable to Cleartext Storage of... High Unreviewed
CVE-2025-65320 was published Dec 3, 2025
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Moderate Unreviewed
CVE-2025-59701 was published Dec 2, 2025
Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue... Moderate Unreviewed
CVE-2025-59792 was published Nov 28, 2025
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an... Moderate Unreviewed
CVE-2025-3784 was published Nov 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database