GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,640
Composer 4,716
Erlang 34
GitHub Actions 29
Go 2,304
Maven 5,581
npm 3,946
NuGet 711
pip 3,718
Pub 12
RubyGems 920
Rust 964
Swift 38

Unreviewed advisories

All unreviewed 257,166

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

462 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The `/etc/passwd` and `/etc/shadow` files reveal hard-coded password hashes for the operating... High Unreviewed

CVE-2025-48413 was published May 21, 2025

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The... High Unreviewed

CVE-2025-32888 was published May 2, 2025

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The... High Unreviewed

CVE-2025-32889 was published May 2, 2025

Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and... High Unreviewed

CVE-2025-46617 was published Apr 25, 2025

CarlinKit CPC200-CCPA Wireless Hotspot Hard-Coded Credentials Authentication Bypass Vulnerability... High Unreviewed

CVE-2025-2765 was published Apr 23, 2025

We observed that Intellispace Portal binaries doesn’t have any protection mechanisms to prevent... High Unreviewed

CVE-2025-3426 was published Apr 7, 2025

An issue was discovered on the Audi Universal Traffic Recorder 2.88. It has Susceptibility to... High Unreviewed

CVE-2025-30118 was published Mar 25, 2025

Zohocorp's ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are... High Unreviewed

CVE-2025-1724 was published Mar 17, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... High Unreviewed

CVE-2024-13773 was published Mar 14, 2025

Use of Hard-coded Credentials vulnerability in GE Vernova EnerVista UR Setup allows Privilege... High Unreviewed

CVE-2025-27255 was published Mar 10, 2025

Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control... High Unreviewed

CVE-2024-9334 was published Feb 27, 2025

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application... High Unreviewed

CVE-2024-52902 was published Feb 19, 2025

Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500‑XS allows... High Unreviewed

CVE-2024-8893 was published Feb 14, 2025

Certain models of routers from Billion Electric has hard-coded embedded linux credentials,... High Unreviewed

CVE-2025-1143 was published Feb 11, 2025

Hardcoded credentials in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote attackers to... High Unreviewed

CVE-2024-46436 was published Feb 10, 2025

A default credentials vulnerability in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote... High Unreviewed

CVE-2024-46433 was published Feb 10, 2025

A hardcoded credentials vulnerability in Tenda W18E V16.01.0.8(1625) allows unauthenticated... High Unreviewed

CVE-2024-46429 was published Feb 10, 2025

In EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0, the AES encryption keys used to encrypt... High Unreviewed

CVE-2024-53357 was published Feb 1, 2025

AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the... High Unreviewed

CVE-2024-48310 was published Jan 29, 2025

An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service,... High Unreviewed

CVE-2024-55968 was published Jan 29, 2025

ECOVACS robot lawnmowers and vacuums use a deterministic root password generated based on model... High Unreviewed

CVE-2024-11147 was published Jan 23, 2025

An issue in the AsDB service of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to enumerate... High Unreviewed

CVE-2024-48125 was published Jan 15, 2025

The application uses several hard-coded credentials to encrypt config files during backup, to... High Unreviewed

CVE-2024-28146 was published Dec 12, 2024

Ubiquiti U7-Pro 7.0.35 was discovered to contain a hardcoded password vulnerability in /etc... High Unreviewed

CVE-2024-54749 was published Dec 6, 2024

IBM Cognos Controller 11.0.0 and 11.0.1 contains hard-coded credentials, such as a... High Unreviewed

CVE-2024-41777 was published Dec 3, 2024

Previous 1 2 3 4 5 … 18 19 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

462 advisories