Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

240 advisories

Loading
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2020-4805 was published May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2020-4803 was published May 24, 2022
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to... Moderate Unreviewed
CVE-2021-27004 was published May 24, 2022
lpar2rrd is a hardcoded system account in XoruX LPAR2RRD and STOR2RRD before 7.30. Critical Unreviewed
CVE-2021-42371 was published May 24, 2022
For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6... High Unreviewed
CVE-2020-8481 was published May 24, 2022
An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android,... Moderate Unreviewed
CVE-2021-43512 was published Jun 3, 2022
Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical... Moderate Unreviewed
CVE-2022-30740 was published Jun 8, 2022
In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server... High Unreviewed
CVE-2022-28168 was published Jun 28, 2022
Brocade SANnav before Brocade SANvav v. 2.2.0.2 and Brocade SANanv v.2.1.1.8 logs the Brocade... Moderate Unreviewed
CVE-2022-28167 was published Jun 28, 2022
Torguard VPN 4.8, has a vulnerability that allows an attacker to dump sensitive information, such... High Unreviewed
CVE-2022-37835 was published Sep 13, 2022
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the... Moderate Unreviewed
CVE-2022-41320 was published Sep 25, 2022
Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4... Moderate Unreviewed
CVE-2022-28170 was published Oct 26, 2022
ezplatform-graphql GraphQL queries can expose password hashes High
CVE-2022-41876 was published for ezsystems/ezplatform-graphql (Composer) Nov 10, 2022
tranca
IBM CICS TX 11.1 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2022-34312 was published Nov 14, 2022
IBM Sterling Partner Engagement Manager 2.0 allows encrypted storage of client data to be stored... Low Unreviewed
CVE-2022-34354 was published Nov 16, 2022
During iframe navigation, certain pages did not have their FeaturePolicy fully initialized... Moderate Unreviewed
CVE-2022-40959 was published Dec 22, 2022
Logins saved by Firefox should be managed by the Password Manager component which uses encryption... Low Unreviewed
CVE-2022-42931 was published Dec 22, 2022
Publify Core does not strip metadata from images Moderate
CVE-2022-2815 was published for publify_core (RubyGems) Jan 14, 2023
Incorrect Access Control issue discovered in KiteCMS 1.1 allows remote attackers to view... High Unreviewed
CVE-2021-36546 was published Feb 3, 2023
Insecure Storage of Sensitive Information vulnerability in ABB My Control System (on-premise)... Critical Unreviewed
CVE-2023-0580 was published Apr 6, 2023
IBM UrbanCode Deploy (UCD) versions up to 7.3.0.1 could disclose sensitive password information... Moderate Unreviewed
CVE-2022-43877 was published May 6, 2023
Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may... High Unreviewed
CVE-2022-43475 was published May 10, 2023
Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may... High Unreviewed
CVE-2022-44619 was published May 10, 2023
A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering... Moderate Unreviewed
CVE-2023-31150 was published May 10, 2023
RosarioSIS Stores Sensitive Data in a Mechanism without Access Control High
CVE-2023-2665 was published for francoisjacquet/rosariosis (Composer) May 19, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database