GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,749
Composer 4,747
Erlang 35
GitHub Actions 29
Go 2,321
Maven 5,604
npm 3,955
NuGet 712
pip 3,736
Pub 12
RubyGems 921
Rust 972
Swift 38

Unreviewed advisories

All unreviewed 257,897

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

507 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM InfoSphere Information Server 11.7 stores credential information for database authentication... Moderate Unreviewed

CVE-2025-1499 was published Jun 1, 2025

Tinxy WiFi Lock Controller v1 RF was discovered to store users' sensitive information, including... High Unreviewed

CVE-2025-44614 was published May 30, 2025

Dell ThinOS 2502 and prior contain a Cleartext Storage of Sensitive Information vulnerability. A... Moderate Unreviewed

CVE-2025-32752 was published May 29, 2025

The data stored in Be-Tech Mifare Classic card is stored in cleartext. An attacker having access... Moderate Unreviewed

CVE-2025-4053 was published May 26, 2025

A vulnerability, which was classified as problematic, was found in PhonePe App 25.03.21.0 on... Moderate Unreviewed

CVE-2025-5154 was published May 25, 2025

The local iLabClient database in itech iLabClient 3.7.1 allows local attackers to read cleartext... Moderate Unreviewed

CVE-2024-56428 was published May 21, 2025

Insufficient encryption vulnerability in the mobile application (com.transsion.aivoiceassistant)... Moderate Unreviewed

CVE-2025-4737 was published May 15, 2025

A vulnerability was found in yangzongzhuan RuoYi-Vue up to 3.8.9 and classified as problematic.... Low Unreviewed

CVE-2025-4537 was published May 11, 2025

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro... High Unreviewed

CVE-2025-46634 was published May 2, 2025

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro... High Unreviewed

CVE-2025-46633 was published May 2, 2025

Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information... High Unreviewed

CVE-2025-3395 was published Apr 30, 2025

A vulnerability in the “Backup & Restore” functionality of the web application of ctrlX OS allows... Moderate Unreviewed

CVE-2025-27532 was published Apr 30, 2025

A vulnerability in the Palo Alto Networks PAN-OS® software enables unlicensed administrators to... Moderate Unreviewed

CVE-2025-0123 was published Apr 11, 2025

This vulnerability exists in TP-Link Tapo H200 V1 IoT Smart Hub due to storage of Wi-Fi... Moderate Unreviewed

CVE-2025-3442 was published Apr 9, 2025

Valmet DNA user passwords in plain text. This practice poses a security risk as attackers who... Moderate Unreviewed

CVE-2025-0418 was published Apr 1, 2025

The lack of encryption in the DuoxMe (formerly Blue) application binary in versions prior to 3.3... Moderate Unreviewed

CVE-2025-2909 was published Mar 28, 2025

An issue in KukuFM Android v1.12.7 (11207) allows attackers to access sensitive cleartext data... High Unreviewed

CVE-2025-25758 was published Mar 20, 2025

This vulnerability exists in the Tinxy smart devices due to storage of credentials in plaintext... Moderate Unreviewed

CVE-2025-2189 was published Mar 11, 2025

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery... High Unreviewed

CVE-2024-12604 was published Mar 10, 2025

A vulnerability was found in Thinkware Car Dashcam F800 Pro up to 20250226. It has been rated as... Low Unreviewed

CVE-2025-2120 was published Mar 9, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330... High Unreviewed

CVE-2025-27685 was published Mar 5, 2025

CalInvocationHandler in Brocade SANnav before 2.3.1b logs sensitive information in clear text.... Moderate Unreviewed

CVE-2024-10404 was published Feb 14, 2025

mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain... Critical Unreviewed

CVE-2025-22896 was published Feb 14, 2025

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record... High Unreviewed

CVE-2025-26495 was published Feb 11, 2025

Cleartext storage of information in Ivanti Connect Secure before version 22.7R2.6 and Ivanti... Moderate Unreviewed

CVE-2024-13843 was published Feb 11, 2025

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

507 advisories