GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+ Composer
5,000+ Erlang
39 GitHub Actions
38 Go
2,750 Maven
5,000+ npm
4,353 NuGet
765 pip
4,114 Pub
12 RubyGems
960 Rust
1,069 Swift
45Unreviewed advisories
All unreviewed
5,000+668 advisories
Filter by severity
Uh oh!
There was an error while loading. Please reload this page.
The mobile application was found to contain stored credentials for the network it was developed... Critical Unreviewed
CVE-2025-65826 was published Dec 10, 2025
SpinetiX Fusion Digital Signage 3.4.8 contains an unauthenticated information disclosure... High Unreviewed
CVE-2020-36887 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34427 was published Dec 10, 2025
MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that... Moderate Unreviewed
CVE-2025-34428 was published Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67637 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
Jenkins's build authorization token is stored and displayed in plain text Moderate
CVE-2025-67638 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025
R Radio Network FM Transmitter 1.07 allows unauthenticated attackers to access the admin user's... High Unreviewed
CVE-2024-58277 was published Dec 4, 2025
Abacre Restaurant Point of Sale (POS) up to 15.0.0.1656 are vulnerable to Cleartext Storage of... High Unreviewed
CVE-2025-65320 was published Dec 3, 2025
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Moderate Unreviewed
CVE-2025-59701 was published Dec 2, 2025
Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue... Moderate Unreviewed
CVE-2025-59792 was published Nov 28, 2025
Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an... Moderate Unreviewed
CVE-2025-3784 was published Nov 27, 2025
FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x Gigabit RJ45, with 2 x 1Gb SFP, Fanless... Moderate Unreviewed
CVE-2025-25613 was published Nov 20, 2025
An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6... High Unreviewed
CVE-2025-63208 was published Nov 19, 2025
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11... Low Unreviewed
CVE-2025-54342 was published Nov 14, 2025
Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the AD/LDAP user import... Moderate Unreviewed
CVE-2025-34270 was published Oct 31, 2025
Liferay Portal Stores Password Reset Tokens in Plain Text Moderate
CVE-2025-62261 was published for com.liferay.portal:com.liferay.portal.impl (Maven) Oct 28, 2025
Cleartext Storage of Sensitive Information (CWE-312) in the Gallagher Morpho integration could... Moderate Unreviewed
CVE-2025-48428 was published Oct 23, 2025
Cleartext storage of sensitive information in Windows Kernel allows an unauthorized attacker to... Moderate Unreviewed
CVE-2025-55334 was published Oct 14, 2025
Cleartext storage of sensitive information in Smart Switch prior to version 3.7.67.2 allows local... High Unreviewed
CVE-2025-21061 was published Oct 10, 2025
Cleartext storage of sensitive information in Smart Switch prior to version 3.7.67.2 allows local... Moderate Unreviewed
CVE-2025-21060 was published Oct 10, 2025
The YoSmart YoLink Smart Hub firmware 0382 is unencrypted, and data extracted from it can be used... Moderate Unreviewed
CVE-2025-59450 was published Oct 6, 2025
Flock Safety Falcon and Sparrow License Plate Readers OPM1.171019.026 ship with development Wi-Fi... High Unreviewed
CVE-2025-59409 was published Oct 2, 2025
NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an... Low Unreviewed
CVE-2025-23291 was published Sep 30, 2025
Cleartext storage of sensitive information was discovered in Click Programming Software version... Moderate Unreviewed
CVE-2025-54855 was published Sep 24, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS... Critical Unreviewed
CVE-2025-34206 was published Sep 19, 2025
ProTip! Advisories are also available from the GraphQL API