GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
76 advisories
Filter by severity
Motorola MBTS Site Controller accepts hard-coded backdoor password. The Motorola MBTS Site...
Critical
Unreviewed
CVE-2023-23770
was published
Aug 29, 2023
Sewio’s Real-Time Location System (RTLS) Studio version 2.0.0 up to and including version 2.6.2...
Critical
Unreviewed
CVE-2022-45444
was published
Jul 6, 2023
A vulnerability classified as critical was found in OTCMS up to 6.62. This vulnerability affects...
Moderate
Unreviewed
CVE-2023-3237
was published
Jun 14, 2023
Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation...
High
Unreviewed
CVE-2023-2061
was published
Jun 2, 2023
This vulnerability enables ssh access to minikube container using a default password.
High
Unreviewed
CVE-2023-1944
was published
May 24, 2023
A vulnerability, which was classified as problematic, has been found in cnoa OA up to 5.1.1.5....
Moderate
Unreviewed
CVE-2023-2799
was published
May 18, 2023
A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is...
Critical
Unreviewed
CVE-2023-2645
was published
May 11, 2023
A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1...
Moderate
Unreviewed
CVE-2023-29103
was published
May 9, 2023
A vulnerability was found in Deye/Revolt/Bosswerk Inverter MW3_15U_5406_1.47/MW3_15U_5406_1.471....
Moderate
Unreviewed
CVE-2023-0808
was published
Feb 13, 2023
A vulnerability classified as critical has been found in Netis Netcore Router. This affects an...
Critical
Unreviewed
CVE-2018-25069
was published
Jan 7, 2023
A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected...
Critical
Unreviewed
CVE-2014-125030
was published
Jan 1, 2023
Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an...
Critical
Unreviewed
CVE-2022-41653
was published
Dec 14, 2022
Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1...
High
Unreviewed
CVE-2022-29831
was published
Nov 25, 2022
Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 all versions allows an...
High
Unreviewed
CVE-2022-29825
was published
Nov 25, 2022
A hard-coded password vulnerability exists in the libcommonprod.so prod_change_root_passwd...
Critical
Unreviewed
CVE-2022-22144
was published
Aug 6, 2022
The Motorola ACE1000 RTU through 2022-05-02 ships with a hardcoded SSH private key and...
Critical
Unreviewed
CVE-2022-30271
was published
Jul 27, 2022
The same hard-coded password in QSAN Storage Manager's in the firmware allows remote attackers to...
Critical
Unreviewed
CVE-2021-32525
was published
May 24, 2022
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2...
Critical
Unreviewed
CVE-2021-38456
was published
May 24, 2022
A CWE-259: Use of Hard-coded Password vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4...
Critical
Unreviewed
CVE-2021-22729
was published
May 24, 2022
Use of MAC address as an authenticated password in QSAN Storage Manager, XEVO, SANOS allows local...
High
Unreviewed
CVE-2021-32521
was published
May 24, 2022
The software contains a hard-coded password that could allow an attacker to take control of the...
Critical
Unreviewed
CVE-2021-27452
was published
May 24, 2022
The software contains a hard-coded password it uses for its own inbound authentication or for...
Critical
Unreviewed
CVE-2021-27440
was published
May 24, 2022
This vulnerability allows network-adjacent attackers to bypass authentication on affected...
High
Unreviewed
CVE-2021-27254
was published
May 24, 2022
A vulnerability has been identified in DCA Vantage Analyzer (All versions < V4.5 are affected by...
Moderate
Unreviewed
CVE-2020-7590
was published
May 24, 2022
Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN...
High
Unreviewed
CVE-2019-13530
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API