GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,795

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

455 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It sends the following... Moderate Unreviewed

CVE-2021-41849 was published Mar 13, 2022

ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x... High Unreviewed

CVE-2020-25178 was published Mar 19, 2022

Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as... High Unreviewed

CVE-2022-0988 was published Mar 26, 2022

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in ISS BlackICE PC Protection. It has... Moderate Unreviewed

CVE-2003-5002 was published Mar 29, 2022

Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are... High Unreviewed

CVE-2021-32982 was published Apr 5, 2022

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is Cleartext Transmission of... Moderate Unreviewed

CVE-2021-45894 was published Apr 6, 2022

Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in... High Unreviewed

CVE-2021-33022 was published Apr 3, 2022

An information disclosure vulnerability exists in the Web Application functionality of Moxa... High Unreviewed

CVE-2021-40392 was published Apr 15, 2022

Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2... Critical Unreviewed

CVE-2020-26197 was published May 24, 2022

The Trend Controls IC protocol through 2022-05-06 allows Cleartext Transmission of Sensitive... Moderate Unreviewed

CVE-2022-30312 was published Sep 8, 2022

An issue was discovered in Couchbase Server 6.5.x and 6.6.x through 6.6.1. When using the View... Moderate Unreviewed

CVE-2021-27925 was published May 24, 2022

Philips Interoperability Solution XDS versions 2.5 through 3.11 and 2018-1 through 2021-1 are... High Unreviewed

CVE-2021-32966 was published May 26, 2022

iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A man in the middle can... Moderate Unreviewed

CVE-2021-34687 was published May 24, 2022

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine... High Unreviewed

CVE-2022-26077 was published May 26, 2022

This advisory documents the impact of an internally found vulnerability in Arista EOS state... Moderate Unreviewed

CVE-2021-28509 was published May 27, 2022

IBM QRadar SIEM 7.3 and 7.4 uses less secure methods for protecting data in transit between hosts... Moderate Unreviewed

CVE-2020-4980 was published May 24, 2022

This advisory documents the impact of an internally found vulnerability in Arista EOS state... Moderate Unreviewed

CVE-2021-28508 was published May 27, 2022

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 was discovered to transmit and... Moderate Unreviewed

CVE-2022-29733 was published Jun 3, 2022

An issue was discovered in the RCDevs OpenOTP app 1.4.13 and 1.4.14 for iOS. If it is installed... Moderate Unreviewed

CVE-2021-42111 was published May 24, 2022

An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. The transmission... Moderate Unreviewed

CVE-2022-25805 was published Jun 10, 2022

The Credova_Financial WordPress plugin discloses a site's associated Credova API account username... Moderate Unreviewed

CVE-2021-39342 was published May 24, 2022

LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack... Moderate Unreviewed

CVE-2022-1524 was published Jun 25, 2022

A vulnerability classified as problematic was found in Teleopti WFM up to 7.1.0. Affected by this... Moderate Unreviewed

CVE-2017-20109 was published Jun 30, 2022

Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller... High Unreviewed

CVE-2022-29519 was published Jun 29, 2022

AutomationDirect DirectLOGIC is vulnerable to a specifically crafted serial message to the CPU... Critical Unreviewed

CVE-2022-2003 was published Sep 1, 2022

Previous 1 2 3 4 5 … 18 19 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

455 advisories