GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,505

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

75 advisories

Filter by severity

Sort by

Least recently updated

Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A... Critical Unreviewed

CVE-2021-36312 was published Nov 24, 2021

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN... High Unreviewed

CVE-2019-13530 was published May 24, 2022

A vulnerability has been identified in DCA Vantage Analyzer (All versions < V4.5 are affected by... Moderate Unreviewed

CVE-2020-7590 was published May 24, 2022

This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed

CVE-2021-27254 was published May 24, 2022

The software contains a hard-coded password it uses for its own inbound authentication or for... Critical Unreviewed

CVE-2021-27440 was published May 24, 2022

The software contains a hard-coded password that could allow an attacker to take control of the... Critical Unreviewed

CVE-2021-27452 was published May 24, 2022

Use of MAC address as an authenticated password in QSAN Storage Manager, XEVO, SANOS allows local... High Unreviewed

CVE-2021-32521 was published May 24, 2022

A CWE-259: Use of Hard-coded Password vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4... Critical Unreviewed

CVE-2021-22729 was published May 24, 2022

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2... Critical Unreviewed

CVE-2021-38456 was published May 24, 2022

The same hard-coded password in QSAN Storage Manager's in the firmware allows remote attackers to... Critical Unreviewed

CVE-2021-32525 was published May 24, 2022

The Motorola ACE1000 RTU through 2022-05-02 ships with a hardcoded SSH private key and... Critical Unreviewed

CVE-2022-30271 was published Jul 27, 2022

A hard-coded password vulnerability exists in the libcommonprod.so prod_change_root_passwd... Critical Unreviewed

CVE-2022-22144 was published Aug 6, 2022

Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1... High Unreviewed

CVE-2022-29831 was published Nov 25, 2022

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 all versions allows an... High Unreviewed

CVE-2022-29825 was published Nov 25, 2022

Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an... Critical Unreviewed

CVE-2022-41653 was published Dec 14, 2022

A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected... Critical Unreviewed

CVE-2014-125030 was published Jan 1, 2023

A vulnerability classified as critical has been found in Netis Netcore Router. This affects an... Critical Unreviewed

CVE-2018-25069 was published Jan 7, 2023

A vulnerability was found in Deye/Revolt/Bosswerk Inverter MW3_15U_5406_1.47/MW3_15U_5406_1.471.... Moderate Unreviewed

CVE-2023-0808 was published Feb 13, 2023

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1... Moderate Unreviewed

CVE-2023-29103 was published May 9, 2023

A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is... Critical Unreviewed

CVE-2023-2645 was published May 11, 2023

A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5.... Moderate Unreviewed

CVE-2023-2799 was published May 18, 2023

This vulnerability enables ssh access to minikube container using a default password. High Unreviewed

CVE-2023-1944 was published May 24, 2023

Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation... High Unreviewed

CVE-2023-2061 was published Jun 2, 2023

A vulnerability classified as critical was found in OTCMS up to 6.62. This vulnerability affects... Moderate Unreviewed

CVE-2023-3237 was published Jun 14, 2023

Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2... Critical Unreviewed

CVE-2022-45444 was published Jul 6, 2023

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

75 advisories