Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

19 advisories

Loading
All versions of the qBittorrent client through 4.5.5 use default credentials when the web user... Critical Unreviewed
CVE-2023-30801 was published Oct 10, 2023
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate... Critical Unreviewed
CVE-2023-49621 was published Jan 9, 2024
Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials Critical Unreviewed
CVE-2023-3703 was published Sep 3, 2023
IO-1020 Micro ELD web server uses a default password for authentication. High Unreviewed
CVE-2024-31069 was published Apr 12, 2024
IO-1020 Micro ELD uses a default WIFI password that could allow an adjacent attacker to connect... High Unreviewed
CVE-2024-30210 was published Apr 12, 2024
Default credentials on the Web Interface of Evolution Controller 2.x (123 and 123) allows anyone... High Unreviewed
CVE-2024-29844 was published Apr 15, 2024
If misconfigured, alpitronic Hypercharger EV charging devices can expose a web interface ... Unknown Unreviewed
CVE-2024-4622 was published May 15, 2024
All the Toshiba printers share the same hardcoded root password. As for the affected products... High Unreviewed
CVE-2024-27158 was published Jun 14, 2024
Skupper uses a static cookie secret for the openshift oauth-proxy Moderate
CVE-2024-6535 was published for github.com/skupperproject/skupper (Go) Jul 17, 2024
Philips Vue PACS uses default credentials for potentially critical functionality. High Unreviewed
CVE-2023-40704 was published Jul 18, 2024
Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device,... Moderate Unreviewed
CVE-2024-5632 was published Jul 9, 2024
Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07... High Unreviewed
CVE-2024-4007 was published Jul 1, 2024
A vulnerability classified as critical was found in Tosei Online Store Management System... Moderate Unreviewed
CVE-2024-7898 was published Aug 17, 2024
Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator... Critical Unreviewed
CVE-2024-7746 was published Aug 13, 2024
Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high... High Unreviewed
CVE-2024-39584 was published Aug 28, 2024
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for... High Unreviewed
CVE-2024-39747 was published Aug 31, 2024
The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has... High Unreviewed
CVE-2024-28093 was published Mar 26, 2024
Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is... Critical Unreviewed
CVE-2023-30603 was published Jul 6, 2023
Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on Linux (Infotainment Hub... Moderate Unreviewed
CVE-2024-6245 was published Oct 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database