GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,768
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
441 advisories
Filter by severity
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows...
High
Unreviewed
CVE-2024-28875
was published
Oct 30, 2024
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows...
High
Unreviewed
CVE-2024-31151
was published
Oct 30, 2024
An attacker with local access to the medical office computer can
access restricted functions of...
High
Unreviewed
CVE-2024-50593
was published
Nov 8, 2024
In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of...
High
Unreviewed
CVE-2024-7295
was published
Nov 13, 2024
Azure Stack HCI Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49060
was published
Nov 15, 2024
Tenda W30E v2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in ...
High
Unreviewed
CVE-2024-52789
was published
Nov 19, 2024
Tenda W9 v1.0.0.7(4456) was discovered to contain a hardcoded password vulnerability in /etc_ro...
High
Unreviewed
CVE-2024-52788
was published
Nov 19, 2024
Keycloak Build Process Exposes Sensitive Data
High
CVE-2024-10451
was published
for
org.keycloak:keycloak-quarkus-server
(Maven)
Nov 25, 2024
IBM Cognos Controller 11.0.0 and 11.0.1
contains hard-coded credentials, such as a...
High
Unreviewed
CVE-2024-41777
was published
Dec 3, 2024
Ubiquiti U7-Pro 7.0.35 was discovered to contain a hardcoded password vulnerability in /etc...
High
Unreviewed
CVE-2024-54749
was published
Dec 6, 2024
The application uses several hard-coded credentials to encrypt config files during backup, to...
High
Unreviewed
CVE-2024-28146
was published
Dec 12, 2024
An issue in the AsDB service of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to enumerate...
High
Unreviewed
CVE-2024-48125
was published
Jan 15, 2025
ECOVACS robot lawnmowers and vacuums use a deterministic root password generated based on model...
High
Unreviewed
CVE-2024-11147
was published
Jan 23, 2025
AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the...
High
Unreviewed
CVE-2024-48310
was published
Jan 29, 2025
An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service,...
High
Unreviewed
CVE-2024-55968
was published
Jan 29, 2025
In EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0, the AES encryption keys used to encrypt...
High
Unreviewed
CVE-2024-53357
was published
Feb 1, 2025
ProTip!
Advisories are also available from the
GraphQL API