GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
414 advisories
Filter by severity
An issue was discovered in GamerPolls 0.4.6, related to config/environments/all.js and config...
High
Unreviewed
CVE-2018-10966
was published
May 14, 2022
In Dedos-web 1.0, the cookie and session secrets used in the Express.js application have...
High
Unreviewed
CVE-2018-10813
was published
May 14, 2022
An issue was discovered on Momentum Axel 720P 5.1.8 devices. A password of EHLGVG is hard-coded...
High
Unreviewed
CVE-2018-12323
was published
May 14, 2022
Momentum Axel 720P 5.1.8 devices have a hardcoded password of streaming for the appagent account,...
High
Unreviewed
CVE-2018-10328
was published
May 14, 2022
The IMM2 First Failure Data Capture function collects management module logs and diagnostic...
High
Unreviewed
CVE-2018-9068
was published
May 14, 2022
Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password ...
High
Unreviewed
CVE-2010-1573
was published
May 14, 2022
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows...
High
Unreviewed
CVE-2018-13819
was published
May 14, 2022
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows...
High
Unreviewed
CVE-2018-13820
was published
May 14, 2022
Multiple I-O DATA network camera products (TS-WRLP firmware Ver.1.09.04 and earlier, TS-WRLA...
High
Unreviewed
CVE-2018-0663
was published
May 14, 2022
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is a hardcoded...
High
Unreviewed
CVE-2018-17217
was published
May 14, 2022
An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android....
High
Unreviewed
CVE-2018-15753
was published
May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application...
High
Unreviewed
CVE-2018-19066
was published
May 14, 2022
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application...
High
Unreviewed
CVE-2018-19065
was published
May 14, 2022
A vulnerability in the configuration of a local database installed as part of the Cisco Energy...
High
Unreviewed
CVE-2018-0468
was published
May 14, 2022
COMPAREX Miss Marple Enterprise Edition before 2.0 allows local users to execute arbitrary code...
High
Unreviewed
CVE-2018-19233
was published
May 14, 2022
Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and...
High
Unreviewed
CVE-2018-16201
was published
May 14, 2022
Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts...
High
Unreviewed
CVE-2018-11062
was published
May 14, 2022
An issue was discovered on EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 devices. Hardcoded root SSH...
High
Unreviewed
CVE-2018-10532
was published
May 14, 2022
RICOH Interactive Whiteboard D2200 V1.1 to V2.2, D5500 V1.1 to V2.2, D5510 V1.1 to V2.2, the...
High
Unreviewed
CVE-2018-16186
was published
May 14, 2022
Teradata Viewpoint before 14.0 and 16.20.00.02-b80 contains a hardcoded password of TDv1i2e3w4...
High
Unreviewed
CVE-2019-6499
was published
May 14, 2022
The Zyxel Multy X (AC3000 Tri-Band WiFi System) device doesn't use a suitable mechanism to...
High
Unreviewed
CVE-2018-9149
was published
May 14, 2022
An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. After successful...
High
Unreviewed
CVE-2018-20219
was published
May 14, 2022
DASAN H660RM devices with firmware 1.03-0022 use a hard-coded key for logs encryption. Data...
High
Unreviewed
CVE-2019-9975
was published
May 14, 2022
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including...
High
Unreviewed
CVE-2017-3762
was published
May 14, 2022
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses a shared and...
High
Unreviewed
CVE-2022-1701
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API