Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,167 advisories

Loading
Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to... Critical Unreviewed
CVE-2021-20155 was published Dec 31, 2021
Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. It does not appear that normal... High Unreviewed
CVE-2021-20170 was published Dec 31, 2021
Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear... High Unreviewed
CVE-2021-45732 was published Dec 31, 2021
Hard coded credentials discovered in SolarWinds Web Help Desk product. Through these credentials,... Moderate Unreviewed
CVE-2021-35232 was published Dec 28, 2021
IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a... High Unreviewed
CVE-2021-32993 was published Dec 28, 2021
Certain NETGEAR devices are affected by a hardcoded password. This affects RBK352 before 4.4.0.10... High Unreviewed
CVE-2021-45520 was published Dec 27, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by a hardcoded password. High Unreviewed
CVE-2021-45522 was published Dec 27, 2021
Certain NETGEAR devices are affected by a hardcoded password. This affects RBK352 before 4.4.0.10... Moderate Unreviewed
CVE-2021-45521 was published Dec 27, 2021
Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials. High Unreviewed
CVE-2021-44207 was published Dec 22, 2021
A combination of a use of hard-coded cryptographic key vulnerability [CWE-321] in FortiClientEMS... High Unreviewed
CVE-2021-41028 was published Dec 17, 2021
A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may... High Unreviewed
CVE-2021-26108 was published Dec 9, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was... Critical Unreviewed
CVE-2021-43044 was published Dec 7, 2021
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets... High Unreviewed
CVE-2021-43284 was published Dec 1, 2021
An issue was discovered on Victure WR1200 devices through 1.0.3. The default Wi-Fi WPA2 key is... Moderate Unreviewed
CVE-2021-43282 was published Dec 1, 2021
HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows... Critical Unreviewed
CVE-2021-26611 was published Nov 27, 2021
Hard coded cryptographic key in Kiali High
CVE-2020-1764 was published for github.com/kiali/kiali (Go) May 18, 2021
Hard-Coded Key Used For Remember-me Token in Opencast Moderate
CVE-2020-5222 was published for org.opencastproject:opencast-kernel (Maven) Jan 30, 2020
LukasKalbertodt
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database