GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
19 advisories
Filter by severity
Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on Linux (Infotainment Hub...
Moderate
Unreviewed
CVE-2024-6245
was published
Oct 28, 2024
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for...
High
Unreviewed
CVE-2024-39747
was published
Aug 31, 2024
Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high...
High
Unreviewed
CVE-2024-39584
was published
Aug 28, 2024
A vulnerability classified as critical was found in Tosei Online Store Management System...
Moderate
Unreviewed
CVE-2024-7898
was published
Aug 17, 2024
Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator...
Critical
Unreviewed
CVE-2024-7746
was published
Aug 13, 2024
Philips Vue PACS uses default credentials for potentially critical functionality.
High
Unreviewed
CVE-2023-40704
was published
Jul 18, 2024
Skupper uses a static cookie secret for the openshift oauth-proxy
Moderate
CVE-2024-6535
was published
for
github.com/skupperproject/skupper
(Go)
Jul 17, 2024
Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device,...
Moderate
Unreviewed
CVE-2024-5632
was published
Jul 9, 2024
Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07...
High
Unreviewed
CVE-2024-4007
was published
Jul 1, 2024
All the Toshiba printers share the same hardcoded root password. As for the affected products...
High
Unreviewed
CVE-2024-27158
was published
Jun 14, 2024
If misconfigured, alpitronic Hypercharger EV charging devices can expose a web interface ...
Unknown
Unreviewed
CVE-2024-4622
was published
May 15, 2024
Default credentials on the Web Interface of Evolution Controller 2.x (123 and 123) allows anyone...
High
Unreviewed
CVE-2024-29844
was published
Apr 15, 2024
IO-1020 Micro ELD web server uses a default password for authentication.
High
Unreviewed
CVE-2024-31069
was published
Apr 12, 2024
IO-1020 Micro ELD uses a default WIFI password that could allow an adjacent attacker to connect...
High
Unreviewed
CVE-2024-30210
was published
Apr 12, 2024
The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has...
High
Unreviewed
CVE-2024-28093
was published
Mar 26, 2024
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate...
Critical
Unreviewed
CVE-2023-49621
was published
Jan 9, 2024
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user...
Critical
Unreviewed
CVE-2023-30801
was published
Oct 10, 2023
Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials
Critical
Unreviewed
CVE-2023-3703
was published
Sep 3, 2023
Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is...
Critical
Unreviewed
CVE-2023-30603
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API