Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,327 advisories

Loading
Hardcoded credentials in the Ricoh myPrint application 2.9.2.4 for Windows and 2.2.7 for Android... Critical Unreviewed
CVE-2018-18006 was published May 14, 2022
A vulnerability in the configuration of a local database installed as part of the Cisco Energy... High Unreviewed
CVE-2018-0468 was published May 14, 2022
Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key... Moderate Unreviewed
CVE-2018-9073 was published May 14, 2022
Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4... Critical Unreviewed
CVE-2018-0680 was published May 14, 2022
Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4... Critical Unreviewed
CVE-2018-0681 was published May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... Critical Unreviewed
CVE-2018-19063 was published May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... High Unreviewed
CVE-2018-19065 was published May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... Critical Unreviewed
CVE-2018-19067 was published May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... Critical Unreviewed
CVE-2018-19069 was published May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... High Unreviewed
CVE-2018-19066 was published May 14, 2022
The Oracle WebCenter Interaction 10.3.3 search service queryd.exe binary is compiled with the... Critical Unreviewed
CVE-2018-16957 was published May 14, 2022
Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340,... Critical Unreviewed
CVE-2018-7241 was published May 14, 2022
An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android.... High Unreviewed
CVE-2018-15753 was published May 14, 2022
An issue was discovered on PLANEX CS-W50HD devices with firmware before 030720. A hardcoded... Critical Unreviewed
CVE-2017-12574 was published May 14, 2022
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software contains hard... Critical Unreviewed
CVE-2018-8856 was published May 14, 2022
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is a hardcoded... High Unreviewed
CVE-2018-17217 was published May 14, 2022
An issue was discovered on the PLANEX CS-QR20 1.30. A hardcoded account / password ("admin... Critical Unreviewed
CVE-2017-12577 was published May 14, 2022
The National Payments Corporation of India BHIM application 1.3 for Android relies on three... Critical Unreviewed
CVE-2017-9821 was published May 14, 2022
Multiple I-O DATA network camera products (TS-WRLP firmware Ver.1.09.04 and earlier, TS-WRLA... High Unreviewed
CVE-2018-0663 was published May 14, 2022
POSIM EVO 15.13 for Windows includes hardcoded database credentials for the "root" database user.... Critical Unreviewed
CVE-2018-15808 was published May 14, 2022
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows... High Unreviewed
CVE-2018-13820 was published May 14, 2022
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows... High Unreviewed
CVE-2018-13819 was published May 14, 2022
Harmonic NSG 9000 devices have a default password of nsgadmin for the admin account, a default... Critical Unreviewed
CVE-2018-14943 was published May 14, 2022
Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password ... High Unreviewed
CVE-2010-1573 was published May 14, 2022
Multiple hardcoded credentials in Xsuite 2.x. Critical Unreviewed
CVE-2015-4667 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database