GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
188 advisories
Filter by severity
High severity vulnerability that affects com.github.shyiko.ktlint:ktlint-core
High
CVE-2019-1010260
was published
for
com.github.shyiko.ktlint:ktlint-core
(Maven)
Apr 8, 2019
Cleartext Transmission of Sensitive Information, Inclusion of Functionality from Untrusted Control Sphere , and Download of Code Without Integrity Check in Eclipse hawkBit
High
CVE-2019-10240
was published
for
org.eclipse.hawkbit:hawkbit-autoconfigure
(Maven)
Apr 15, 2019
ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x...
High
Unreviewed
CVE-2020-25178
was published
Mar 19, 2022
Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as...
High
Unreviewed
CVE-2022-0988
was published
Mar 26, 2022
Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are...
High
Unreviewed
CVE-2021-32982
was published
Apr 5, 2022
Philips Vue PACS versions 12.2.x.x and prior transmits sensitive or security-critical data in...
High
Unreviewed
CVE-2021-33022
was published
Apr 3, 2022
An information disclosure vulnerability exists in the Web Application functionality of Moxa...
High
Unreviewed
CVE-2021-40392
was published
Apr 15, 2022
Cleartext Transmission of Sensitive Information in Apache MINA
High
CVE-2019-0231
was published
for
org.apache.mina:mina-core
(Maven)
May 24, 2022
Philips Interoperability Solution XDS versions 2.5 through 3.11 and 2018-1 through 2021-1 are...
High
Unreviewed
CVE-2021-32966
was published
May 26, 2022
A cleartext transmission of sensitive information vulnerability exists in the OAS Engine...
High
Unreviewed
CVE-2022-26077
was published
May 26, 2022
Code injection in concrete CMS
High
CVE-2022-21829
was published
for
concrete5/core
(Composer)
Jun 25, 2022
Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller...
High
Unreviewed
CVE-2022-29519
was published
Jun 29, 2022
AutomationDirect C-more EA9 HTTP webserver uses an insecure mechanism to transport credentials...
High
Unreviewed
CVE-2022-2005
was published
Sep 1, 2022
Any attempt (good or bad) to log into AutomationDirect Stride Field I/O with a web browser may...
High
Unreviewed
CVE-2022-2485
was published
Sep 1, 2022
** DISPUTED ** A vulnerability was found in whohas. It has been rated as problematic. This issue...
High
Unreviewed
CVE-2021-4258
was published
Dec 19, 2022
Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. They...
High
Unreviewed
CVE-2022-31204
was published
Jul 27, 2022
UPSMON PRO transmits sensitive data in cleartext over HTTP protocol. An unauthenticated remote...
High
Unreviewed
CVE-2022-38122
was published
Nov 10, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All...
High
Unreviewed
CVE-2022-29874
was published
May 21, 2022
Cleartext transmission of sensitive information. The following products are affected: Acronis...
High
Unreviewed
CVE-2022-30994
was published
May 19, 2022
Cleartext transmission of sensitive information. The following products are affected: Acronis...
High
Unreviewed
CVE-2022-30993
was published
May 19, 2022
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580,...
High
Unreviewed
CVE-2019-6845
was published
May 24, 2022
GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP...
High
Unreviewed
CVE-2021-27422
was published
Mar 24, 2022
A vulnerability has been identified in Climatix POL909 (AWM module) (All versions < V11.34). The...
High
Unreviewed
CVE-2021-40366
was published
May 24, 2022
A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20...
High
Unreviewed
CVE-2020-1902
was published
May 24, 2022
A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve...
High
Unreviewed
CVE-2020-25645
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API