GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
23 advisories
Filter by severity
ANCHOR from Global Wisdom Software is an integrated product running on a Windows virtual machine....
High
Unreviewed
CVE-2024-12902
was published
Dec 23, 2024
Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited,...
High
Unreviewed
CVE-2024-10476
was published
Dec 17, 2024
MOBATIME Network Master Clock - DTS 4801 allows attackers to use SSH to gain initial access using...
Critical
Unreviewed
CVE-2024-12286
was published
Dec 10, 2024
Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within...
High
Unreviewed
CVE-2024-45068
was published
Dec 3, 2024
Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on Linux (Infotainment Hub...
Moderate
Unreviewed
CVE-2024-6245
was published
Oct 28, 2024
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for...
High
Unreviewed
CVE-2024-39747
was published
Aug 31, 2024
Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high...
High
Unreviewed
CVE-2024-39584
was published
Aug 28, 2024
A vulnerability classified as critical was found in Tosei Online Store Management System...
Moderate
Unreviewed
CVE-2024-7898
was published
Aug 17, 2024
Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator...
Critical
Unreviewed
CVE-2024-7746
was published
Aug 13, 2024
Philips Vue PACS uses default credentials for potentially critical functionality.
High
Unreviewed
CVE-2023-40704
was published
Jul 18, 2024
Skupper uses a static cookie secret for the openshift oauth-proxy
High
CVE-2024-6535
was published
for
github.com/skupperproject/skupper
(Go)
Jul 17, 2024
Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device,...
Moderate
Unreviewed
CVE-2024-5632
was published
Jul 9, 2024
Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07...
High
Unreviewed
CVE-2024-4007
was published
Jul 1, 2024
All the Toshiba printers share the same hardcoded root password. As for the affected products...
High
Unreviewed
CVE-2024-27158
was published
Jun 14, 2024
If misconfigured, alpitronic Hypercharger EV charging devices can expose a web interface ...
Unknown
Unreviewed
CVE-2024-4622
was published
May 15, 2024
Default credentials on the Web Interface of Evolution Controller 2.x (123 and 123) allows anyone...
High
Unreviewed
CVE-2024-29844
was published
Apr 15, 2024
IO-1020 Micro ELD web server uses a default password for authentication.
High
Unreviewed
CVE-2024-31069
was published
Apr 12, 2024
IO-1020 Micro ELD uses a default WIFI password that could allow an adjacent attacker to connect...
High
Unreviewed
CVE-2024-30210
was published
Apr 12, 2024
The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has...
High
Unreviewed
CVE-2024-28093
was published
Mar 26, 2024
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate...
Critical
Unreviewed
CVE-2023-49621
was published
Jan 9, 2024
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user...
Critical
Unreviewed
CVE-2023-30801
was published
Oct 10, 2023
Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials
Critical
Unreviewed
CVE-2023-3703
was published
Sep 3, 2023
Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is...
Critical
Unreviewed
CVE-2023-30603
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API