Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,462
Erlang
33
GitHub Actions
22
Go
2,159
Maven
5,000+
npm
3,820
NuGet
696
pip
3,502
Pub
12
RubyGems
903
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

563 advisories

Loading
Cleartext storage of sensitive information exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0... Moderate Unreviewed
CVE-2023-24586 was published May 10, 2023
In onSetRuntimePermissionGrantStateByDeviceAdmin of AdminRestrictedPermissionsUtils.java, there... Moderate Unreviewed
CVE-2023-20914 was published May 16, 2023
Jenkins Ansible Plugin stores and displays secrets in plain text Moderate
CVE-2023-32982 was published for org.jenkins-ci.plugins:ansible (Maven) May 16, 2023
Jenkins Ansible Plugin job configuration form does not mask variables Moderate
CVE-2023-32983 was published for org.jenkins-ci.plugins:ansible (Maven) May 16, 2023
IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be... Moderate Unreviewed
CVE-2023-22878 was published May 19, 2023
A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and... Low Unreviewed
CVE-2023-2863 was published May 24, 2023
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains License Key Stored in Cleartext... Moderate Unreviewed
CVE-2023-32448 was published May 30, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console... Moderate Unreviewed
CVE-2023-28345 was published May 31, 2023
Plaintext storage of a password exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3.... High Unreviewed
CVE-2023-28713 was published Jun 1, 2023
Bitwarden Desktop v1.20.0 and above stores the biometric key in plaintext which allows a local... High Unreviewed
CVE-2023-27706 was published Jun 9, 2023
The Danfoss AK-EM100 stores login credentials in cleartext. High Unreviewed
CVE-2023-22584 was published Jun 11, 2023
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the... High Unreviewed
CVE-2023-1897 was published Jun 12, 2023
IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 stores user credentials in plain clear... Moderate Unreviewed
CVE-2022-33159 was published Jun 15, 2023
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain... High Unreviewed
CVE-2023-27243 was published Jun 21, 2023
?All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in... Moderate Unreviewed
CVE-2023-3395 was published Jul 3, 2023
A vulnerability exists in the Intelligent Electronic Device (IED) Connectivity Package (ConnPack)... Moderate Unreviewed
CVE-2022-2513 was published Jul 6, 2023
HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured High
CVE-2023-0690 was published for github.com/hashicorp/boundary (Go) Jul 6, 2023
Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214... High Unreviewed
CVE-2023-31408 was published Jul 6, 2023
Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with... Moderate Unreviewed
CVE-2023-35699 was published Jul 10, 2023
A clear text storage of sensitive information (CWE-312) vulnerability in both FortiGate version 6... Low Unreviewed
CVE-2022-22302 was published Jul 11, 2023
A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an... Moderate Unreviewed
CVE-2023-20207 was published Jul 12, 2023
An issue found in ALBIS Co. ALBIS v.13.6.1 allows a remote attacker to gain access to sensitive... High Unreviewed
CVE-2023-31821 was published Jul 13, 2023
Weave GitOps Terraform Controller Information Disclosure Vulnerability High
CVE-2023-34236 was published for github.com/weaveworks/tf-controller (Go) Jul 14, 2023
greenu
A vulnerability was found in Intergard SGS 8.7.0. It has been classified as problematic. This... Moderate Unreviewed
CVE-2023-3762 was published Jul 19, 2023
Wyse Management Suite versions prior to 4.0 contain a sensitive information disclosure... Moderate Unreviewed
CVE-2023-32483 was published Jul 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database