Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,752
Maven
5,000+
npm
4,357
NuGet
765
pip
4,121
Pub
12
RubyGems
961
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

668 advisories

Loading
The mobile application was found to contain stored credentials for the network it was developed... Critical Unreviewed
CVE-2025-65826 was published Dec 10, 2025
SpinetiX Fusion Digital Signage 3.4.8 contains an unauthenticated information disclosure... High Unreviewed
CVE-2020-36887 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34428 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34427 was published Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67638 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67637 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an... Moderate Unreviewed
CVE-2025-3784 was published Nov 27, 2025
R Radio Network FM Transmitter 1.07 allows unauthenticated attackers to access the admin user's... High Unreviewed
CVE-2024-58277 was published Dec 4, 2025
Abacre Restaurant Point of Sale (POS) up to 15.0.0.1656 are vulnerable to Cleartext Storage of... High Unreviewed
CVE-2025-65320 was published Dec 3, 2025
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Moderate Unreviewed
CVE-2025-59701 was published Dec 2, 2025
Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue... Moderate Unreviewed
CVE-2025-59792 was published Nov 28, 2025
Kaseya Rapid Fire Tools Network Detective 2.0.16.0 has Unencrypted Credentials (for privileged... Moderate Unreviewed
CVE-2025-32353 was published Jul 16, 2025
FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x Gigabit RJ45, with 2 x 1Gb SFP, Fanless... Moderate Unreviewed
CVE-2025-25613 was published Nov 20, 2025
An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6... High Unreviewed
CVE-2025-63208 was published Nov 19, 2025
Liferay Portal Stores Password Reset Tokens in Plain Text Moderate
CVE-2025-62261 was published for com.liferay.portal:com.liferay.portal.impl (Maven) Oct 28, 2025
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11... Low Unreviewed
CVE-2025-54342 was published Nov 14, 2025
Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the AD/LDAP user import... Moderate Unreviewed
CVE-2025-34270 was published Oct 31, 2025
Jenkins Applitools Eyes Plugin vulnerability exposes unencrypted keys to certain authenticated users Moderate
CVE-2025-53742 was published for org.jenkins-ci.plugins:applitools-eyes (Maven) Jul 9, 2025
sevvalboylu
Credited to sevvalboylu
Jenkins Kryptowire Plugin vulnerability stores unencrypted Kryptowire API key Moderate
CVE-2025-53672 was published for io.jenkins.plugins:kryptowire (Maven) Jul 9, 2025
Jenkins Nouvola DiveCloud Plugin vulnerability stores unencrypted credentials Moderate
CVE-2025-53670 was published for org.jenkins-ci.plugins:nouvola-divecloud (Maven) Jul 9, 2025
LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. Cleartext... High Unreviewed
CVE-2023-46384 was published Dec 1, 2023
The Kiuwan Local Analyzer (KLA) Java scanning application contains several hard-coded secrets in... High Unreviewed
CVE-2023-49113 was published Jun 20, 2024
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created... Moderate Unreviewed
CVE-2020-11918 was published Nov 7, 2024
User passwords are decrypted and stored on memory before any user logged in. Those decrypted... Moderate Unreviewed
CVE-2024-29146 was published Nov 26, 2024
Insecure Permissions vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a... Moderate Unreviewed
CVE-2024-33892 was published Aug 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database