GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,739
Composer 5,031
Erlang 39
GitHub Actions 38
Go 2,675
Maven 6,116
npm 4,297
NuGet 760
pip 4,077
Pub 12
RubyGems 957
Rust 1,058
Swift 45

Unreviewed advisories

All unreviewed 278,028

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Plaintext password storage in Kotaemon 0.11.0 in the client's localStorage. High Unreviewed

CVE-2025-56527 was published Nov 18, 2025

A vulnerability exists in QuickCMS version 6.8 where sensitive admin credentials are hardcoded in... Moderate Unreviewed

CVE-2025-9982 was published Nov 14, 2025

Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user may... Moderate Unreviewed

CVE-2025-46366 was published Nov 5, 2025

A potential vulnerability was reported in some Lenovo Tablets that could allow a local... Moderate Unreviewed

CVE-2025-11193 was published Nov 4, 2025

IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6... Moderate Unreviewed

CVE-2025-36002 was published Oct 16, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA/SaaS deployments)... Critical Unreviewed

CVE-2025-34210 was published Oct 2, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext... Moderate Unreviewed

CVE-2025-43938 was published Sep 10, 2025

SoftPerfect Pty Ltd Connection Quality Monitor v1.1 was discovered to store all credentials in... Moderate Unreviewed

CVE-2025-45702 was published Jul 24, 2025

Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to store credentials in plaintext. High Unreviewed

CVE-2025-52164 was published Jul 18, 2025

LITEON IC48A firmware versions prior to 01.00.19r and LITEON IC80A firmware versions prior to 01... High Unreviewed

CVE-2025-7357 was published Jul 16, 2025

Several credentials for the local PostgreSQL database are stored in plain text (partially base64... Moderate Unreviewed

CVE-2025-1709 was published Jul 3, 2025

Certain hybrid DVR models ((HBF-09KD and HBF-16NK)) from Hunt Electronic have an Exposure of... Critical Unreviewed

CVE-2025-6561 was published Jun 26, 2025

Multiple wireless router models from Sapido have an Exposure of Sensitive Information... Critical Unreviewed

CVE-2025-6560 was published Jun 26, 2025

Smart Parking Management System from Honding Technology has an Exposure of Sensitive Information... Critical Unreviewed

CVE-2025-5893 was published Jun 9, 2025

The Simple History plugin for WordPress is vulnerable to sensitive data exposure via Detective... Moderate Unreviewed

CVE-2025-5760 was published Jun 6, 2025

A vulnerability exists in the SOAP Web services of the Asset Suite versions listed below. If... Critical Unreviewed

CVE-2025-2500 was published May 30, 2025

An authenticated user can disclose the cleartext password of a configured SMTP server via an HTTP... Moderate Unreviewed

CVE-2025-48046 was published May 29, 2025

IBM Controller 11.0.0, 11.0.1, and 11.1.0 application could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2025-33079 was published May 27, 2025

SAP GUI for Windows allows an unauthenticated attacker to exploit insecure obfuscation algorithms... Moderate Unreviewed

CVE-2025-43005 was published May 13, 2025

WF2220 exposes endpoint /cgi-bin-igd/netcore_get.cgi that returns configuration of the device to... High Unreviewed

CVE-2025-3758 was published May 8, 2025

On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File... Moderate Unreviewed

CVE-2025-0936 was published May 8, 2025

BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability... Moderate Unreviewed

CVE-2025-2770 was published Apr 23, 2025

An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302... Low Unreviewed

CVE-2025-25985 was published Apr 18, 2025

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2024-43186 was published Mar 29, 2025

In version 0.0.14 of transformeroptimus/superagi, the API endpoint `/api/users/get/{id}` returns... Moderate Unreviewed

CVE-2024-9418 was published Mar 20, 2025

Previous1…5 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109 advisories