GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,576
Composer 4,462
Erlang 33
GitHub Actions 22
Go 2,159
Maven 5,338
npm 3,820
NuGet 696
pip 3,502
Pub 12
RubyGems 903
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,503

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

563 advisories

Filter by severity

Sort by

Least recently updated

Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32446 was published Jul 20, 2023

Dell Wyse ThinOS versions prior to 2208 (9.3.2102) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32455 was published Jul 20, 2023

Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure... Moderate Unreviewed

CVE-2023-32447 was published Jul 20, 2023

mRemoteNG configuration files can be stored in an encrypted state on disk. mRemoteNG version <=... High Unreviewed

CVE-2023-30367 was published Jul 26, 2023

TeleAdapt RoomCast TA-2400 1.0 through 3.1 suffers from Cleartext Storage of Sensitive... High Unreviewed

CVE-2023-33742 was published Jul 27, 2023

Element55 KnowMore appliances version 21 and older was discovered to store passwords in plaintext. High Unreviewed

CVE-2023-39144 was published Aug 3, 2023

Assmann Digitus Plug&View IP Camera family allows unauthenticated attackers to download a copy of... High Unreviewed

CVE-2023-30146 was published Aug 4, 2023

Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's... High Unreviewed

CVE-2023-39379 was published Aug 4, 2023

Connected IO v2.1.0 and prior keeps passwords and credentials in clear-text format, allowing... Critical Unreviewed

CVE-2023-33373 was published Aug 4, 2023

An issue was discovered in Fujitsu Software Infrastructure Manager (ISM) before 2.8.0.061. The... Moderate Unreviewed

CVE-2023-39903 was published Aug 7, 2023

In SAP BusinessObjects Business Intelligence - version 420, If a user logs in to a particular... Moderate Unreviewed

CVE-2023-39440 was published Aug 8, 2023

PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user... Moderate Unreviewed

CVE-2023-36136 was published Aug 8, 2023

Cleartext storage of sensitive information in Zoom Client SDK for Windows before 5.15.0 may allow... Moderate Unreviewed

CVE-2023-39210 was published Aug 9, 2023

An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. System... High Unreviewed

CVE-2023-31041 was published Aug 14, 2023

An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password... Moderate Unreviewed

CVE-2023-40354 was published Aug 14, 2023

A vulnerability was found in Control iD Gerencia Web 1.30 and classified as problematic. Affected... Low Unreviewed

CVE-2023-4392 was published Aug 17, 2023

The firmwaredownload command on Brocade Fabric OS v9.2.0 could log the FTP/SFTP/SCP server... High Unreviewed

CVE-2023-3489 was published Aug 31, 2023

Brocade SANnav before v2.3.0 and v2.2.2a stores SNMPv3 Authentication passwords in plaintext. A... Moderate Unreviewed

CVE-2023-31925 was published Aug 31, 2023

Possible information exposure through log file vulnerability where sensitive fields are... Moderate Unreviewed

CVE-2023-31423 was published Aug 31, 2023

An information disclosure issue in GitLab EE affecting all versions from 16.2 prior to 16.2.5,... Low Unreviewed

CVE-2023-3950 was published Sep 1, 2023

An issue was discovered in TSplus Remote Access through 16.0.2.14. Credentials are stored as... Critical Unreviewed

CVE-2023-31069 was published Sep 11, 2023

A password management vulnerability in Skyhigh Secure Web Gateway (SWG) in main releases 11.x... Moderate Unreviewed

CVE-2023-4400 was published Sep 13, 2023

A cleartext storage of sensitive information vulnerability [CWE-312] in FortiTester 2.3.0 through... Moderate Unreviewed

CVE-2023-40715 was published Sep 13, 2023

matrix-synapse vulnerable to temporary storage of plaintext passwords during password changes Low

CVE-2023-41335 was published for matrix-synapse (pip) Sep 26, 2023

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4,... Moderate Unreviewed

CVE-2023-2358 was published Sep 27, 2023

Previous 1 2 … 15 16 17 18 19 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

563 advisories