GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,938

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,134 advisories

Filter by severity

Sort by

Least recently updated

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials,... Critical Unreviewed

CVE-2024-49805 was published Nov 29, 2024

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials,... Critical Unreviewed

CVE-2024-49806 was published Nov 29, 2024

The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability,... Critical Unreviewed

CVE-2024-28987 was published Aug 22, 2024

Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower... High Unreviewed

CVE-2020-3318 was published May 24, 2022

Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower... Low Unreviewed

CVE-2020-3301 was published May 24, 2022

There are several hidden accounts. Some of them are intended for maintenance engineers, and with... Critical Unreviewed

CVE-2024-35244 was published Nov 26, 2024

API keys for some cloud services are hardcoded in the "main" binary. As for the details of... Critical Unreviewed

CVE-2024-36248 was published Nov 26, 2024

Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain a hardcoded... Moderate Unreviewed

CVE-2024-40410 was published Nov 14, 2024

D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability. This vulnerability... Moderate Unreviewed

CVE-2023-51629 was published May 3, 2024

A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android. It has been rated... Moderate Unreviewed

CVE-2024-11026 was published Nov 9, 2024

A vulnerability was found in mariazevedo88 travels-java-api up to 5.0.1 and classified as... Low Unreviewed

CVE-2024-10920 was published Nov 6, 2024

Tenda W9 v1.0.0.7(4456) was discovered to contain a hardcoded password vulnerability in /etc_ro... High Unreviewed

CVE-2024-52788 was published Nov 19, 2024

Tenda W30E v2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in ... High Unreviewed

CVE-2024-52789 was published Nov 19, 2024

Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows... Critical Unreviewed

CVE-2023-51638 was published Nov 22, 2024

The Versa Director uses PostgreSQL (Postgres) to store operational and configuration data. It is... Critical Unreviewed

CVE-2024-42450 was published Nov 19, 2024

Calibre-Web 0.6.6 allows authentication bypass because of the 'A0Zr98j/3yX R~XHH!jmN]LWX/,?RT'... High Unreviewed

CVE-2020-12627 was published May 24, 2022

Azure Stack HCI Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-49060 was published Nov 15, 2024

The Clinician Password and Serial Number Clinician Password are hard-coded into the ventilator in... Critical Unreviewed

CVE-2024-48971 was published Nov 15, 2024

In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of... High Unreviewed

CVE-2024-7295 was published Nov 13, 2024

"Piccoma" App for Android and iOS versions prior to 6.20.0 uses a hard-coded API key for an... Moderate Unreviewed

CVE-2024-38480 was published Jul 1, 2024

An attacker with local access to the medical office computer can access restricted functions of... High Unreviewed

CVE-2024-50593 was published Nov 8, 2024

Use of Hard-coded Credentials vulnerability in Sonatype Nexus Repository has been discovered in... Moderate Unreviewed

CVE-2024-5764 was published Oct 23, 2024

A vulnerability, which was classified as problematic, has been found in Cosmote Greece What's Up... Low Unreviewed

CVE-2024-10748 was published Nov 4, 2024

LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily... Critical Unreviewed

CVE-2024-51431 was published Nov 1, 2024

A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100,... Critical Unreviewed

CVE-2024-20412 was published Oct 23, 2024

Previous 1 2 3 4 5 … 45 46 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,134 advisories