Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

445 advisories

Loading
An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M800B-MSBR and 800C-MSBR... High Unreviewed
CVE-2019-9229 was published May 24, 2022
A vulnerability in the Cisco FindIT Network Management Software virtual machine (VM) images could... High Unreviewed
CVE-2019-1919 was published May 24, 2022
Optergy Proton/Enterprise devices have Hard-coded Credentials. High Unreviewed
CVE-2019-7279 was published May 24, 2022
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)... High Unreviewed
CVE-2019-11947 was published May 24, 2022
A hard-coded credentials vulnerability exists in the snmpd function of the Sierra Wireless... High Unreviewed
CVE-2018-4062 was published May 24, 2022
An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01... High Unreviewed
CVE-2018-18979 was published May 24, 2022
An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01... High Unreviewed
CVE-2018-18978 was published May 24, 2022
The ZyXEL P660HN-T1A v1 TCLinux Fw $7.3.15.0 v001 / 3.40(ULM.0)b31 router distributed by... High Unreviewed
CVE-2017-18374 was published May 24, 2022
The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has three... High Unreviewed
CVE-2017-18373 was published May 24, 2022
A CWE-798 “Use of Hard-coded Credentials” vulnerability in the MariaDB database of the web... High Unreviewed
CVE-2023-5456 was published Mar 5, 2024
EMV DiskXtender 6.20.060 has a hard-coded login and password, which allows remote attackers to... High Unreviewed
CVE-2008-0961 was published May 1, 2022
A remote code execution vulnerability exists in Microsoft Exchange software when the software... High Unreviewed
CVE-2020-0688 was published May 24, 2022
ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is not... High Unreviewed
CVE-2008-1160 was published May 1, 2022
Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back... High Unreviewed
CVE-2005-0496 was published May 1, 2022
Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password ... High Unreviewed
CVE-2010-1573 was published May 14, 2022
Use of Hard-coded Credentials vulnerability in Utarit Information Technologies SoliPay Mobile App... High Unreviewed
CVE-2023-6255 was published Feb 15, 2024
Use of a hard-coded password for a special database account created during Comarch ERP XL... High Unreviewed
CVE-2023-4539 was published Feb 15, 2024
CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access... High Unreviewed
CVE-2023-6409 was published Feb 14, 2024
Improper Input Validation in Hitron Systems DVR LGUVR-8H 1.02~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-22772 was published Jan 23, 2024
Improper Input Validation in Hitron Systems DVR LGUVR-4H 1.02~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-22771 was published Jan 23, 2024
Improper Input Validation in Hitron Systems DVR LGUVR-16H 1.02~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-23842 was published Jan 23, 2024
Improper Input Validation in Hitron Systems DVR HVR-8781 1.03~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-22769 was published Jan 23, 2024
Improper Input Validation in Hitron Systems DVR HVR-16781 1.03~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-22770 was published Jan 23, 2024
Improper Input Validation in Hitron Systems DVR HVR-4781 1.03~4.02 allows an attacker to cause... High Unreviewed
CVE-2024-22768 was published Jan 23, 2024
Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices have predictable default WPA2 PSKs that could... High Unreviewed
CVE-2024-23726 was published Jan 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database