GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,349

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

165 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

This vulnerability exists in ZKTeco WL20 due to storage of admin and user credentials without... High Unreviewed

CVE-2025-54464 was published Aug 13, 2025

Insecure Data Storage of credentials has been found in /api_vedo/configuration/config.yml file in... High Unreviewed

CVE-2025-51055 was published Aug 6, 2025

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of... High Unreviewed

CVE-2025-44649 was published Jul 21, 2025

The hard drives of the device are not encrypted using a full volume encryption feature such as... High Unreviewed

CVE-2025-27460 was published Jul 3, 2025

Tinxy WiFi Lock Controller v1 RF was discovered to store users' sensitive information, including... High Unreviewed

CVE-2025-44614 was published May 30, 2025

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro... High Unreviewed

CVE-2025-46634 was published May 2, 2025

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro... High Unreviewed

CVE-2025-46633 was published May 2, 2025

Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information... High Unreviewed

CVE-2025-3395 was published Apr 30, 2025

An issue in KukuFM Android v1.12.7 (11207) allows attackers to access sensitive cleartext data... High Unreviewed

CVE-2025-25758 was published Mar 20, 2025

A local user may find a configuration file on the client workstation with unencrypted sensitive... High Unreviewed

CVE-2024-23942 was published Mar 18, 2025

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery... High Unreviewed

CVE-2024-12604 was published Mar 10, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330... High Unreviewed

CVE-2025-27685 was published Mar 5, 2025

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record... High Unreviewed

CVE-2025-26495 was published Feb 11, 2025

An issue in H3C switch h3c-S1526 allows a remote attacker to obtain sensitive information via the... High Unreviewed

CVE-2024-51175 was published Dec 18, 2024

TP-Link TL-WR845N(UN)_V4_200909 and TL-WR845N(UN)_V4_190219 was discovered to transmit user... High Unreviewed

CVE-2024-46340 was published Dec 10, 2024

Pentaminds CuroVMS v2.0.1 was discovered to contain exposed sensitive information. High Unreviewed

CVE-2024-40582 was published Dec 9, 2024

A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved... High Unreviewed

CVE-2024-42451 was published Dec 4, 2024

This vulnerability exists in Philips lighting devices due to storage of Wi-Fi credentials in... High Unreviewed

CVE-2024-9991 was published Oct 25, 2024

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test... High Unreviewed

CVE-2024-8070 was published Oct 13, 2024

A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition... High Unreviewed

CVE-2024-9466 was published Oct 9, 2024

In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive... High Unreviewed

CVE-2024-25661 was published Oct 1, 2024

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive password in... High Unreviewed

CVE-2024-28809 was published Sep 30, 2024

Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within... High Unreviewed

CVE-2024-8459 was published Sep 30, 2024

Kastle Systems firmware prior to May 1, 2024, stored machine credentials in cleartext, which may... High Unreviewed

CVE-2024-45862 was published Sep 19, 2024

Cleartext storage of sensitive information vulnerability exists in WindLDR and WindO/I-NV4. If... High Unreviewed

CVE-2024-41716 was published Sep 4, 2024

Previous1…7 Next

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

165 advisories