GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
22 advisories
Filter by severity
This vulnerability allows network-adjacent attackers to bypass authentication on affected...
High
Unreviewed
CVE-2021-27254
was published
May 24, 2022
Use of MAC address as an authenticated password in QSAN Storage Manager, XEVO, SANOS allows local...
High
Unreviewed
CVE-2021-32521
was published
May 24, 2022
Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 all versions allows an...
High
Unreviewed
CVE-2022-29825
was published
Nov 25, 2022
Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1...
High
Unreviewed
CVE-2022-29831
was published
Nov 25, 2022
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-259: Use of Hard-coded...
High
Unreviewed
CVE-2024-27774
was published
Mar 18, 2024
Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN...
High
Unreviewed
CVE-2019-13530
was published
May 24, 2022
This vulnerability enables ssh access to minikube container using a default password.
High
Unreviewed
CVE-2023-1944
was published
May 24, 2023
Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation...
High
Unreviewed
CVE-2023-2061
was published
Jun 2, 2023
Motorola MBTS Base Radio accepts hard-coded backdoor password. The Motorola MBTS Base Radio Man...
High
Unreviewed
CVE-2023-23771
was published
Aug 29, 2023
SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
High
Unreviewed
CVE-2023-41713
was published
Oct 18, 2023
Use of hard-coded password in the GMS ECM endpoint leading to authentication bypass vulnerability...
High
Unreviewed
CVE-2024-29011
was published
May 1, 2024
D-Link DAP-1360 Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-32145
was published
May 3, 2024
A hard-coded password in the FileCatalyst TransferAgent can be found which can be used to unlock...
High
Unreviewed
CVE-2024-5275
was published
Jun 18, 2024
TRENDnet TEW-814DAP v1_(FW1.01B01) was discovered to contain a hardcoded password vulnerability...
High
Unreviewed
CVE-2024-37644
was published
Jun 14, 2024
Toshiba printers contain hardcoded credentials. As for the affected products/models/versions, see...
High
Unreviewed
CVE-2024-27164
was published
Jun 14, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
High
Unreviewed
CVE-2024-38885
was published
Aug 2, 2024
D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.
High
Unreviewed
CVE-2024-41616
was published
Aug 6, 2024
TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a hardcoded password...
High
Unreviewed
CVE-2024-34211
was published
May 14, 2024
DYMO LabelWriter Print Server through 2.366 contains a backdoor hard-coded password that could...
High
Unreviewed
CVE-2023-49963
was published
Apr 19, 2024
AdTran 834-5 HDC17600021F1 (SmartOS 11.1.1.1) devices enable the SSH service by default and have...
High
Unreviewed
CVE-2024-39345
was published
Jul 24, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x, contain(s) an...
High
Unreviewed
CVE-2024-39585
was published
Sep 6, 2024
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain hardcoded credentials for several...
High
Unreviewed
CVE-2024-46328
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API