GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
418 advisories
Filter by severity
An attacker can access the maintenance console using hard coded credentials for a hidden wireless...
High
Unreviewed
CVE-2024-38281
was published
Jun 13, 2024
CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege...
High
Unreviewed
CVE-2024-0865
was published
Jun 12, 2024
Precor touchscreen console P82 contains a private SSH key that corresponds to a default public...
High
Unreviewed
CVE-2023-49222
was published
Jun 7, 2024
Precor touchscreen console P62, P80, and P82 could allow a remote attacker to obtain sensitive...
High
Unreviewed
CVE-2023-49223
was published
Jun 7, 2024
Precor touchscreen console P62, P80, and P82 contains a default SSH public key in the...
High
Unreviewed
CVE-2023-49224
was published
Jun 7, 2024
Precor touchscreen console P62, P80, and P82 could allow a remote attacker (within the local...
High
Unreviewed
CVE-2023-49221
was published
Jun 7, 2024
Dell PowerScale OneFS versions 8.2.x through 9.8.0.x contain a use of hard coded credentials...
High
Unreviewed
CVE-2024-29170
was published
Jun 4, 2024
'OfferBox' App for Android versions 2.0.0 to 2.3.17 and 'OfferBox' App for iOS versions 2.1.7 to...
High
Unreviewed
CVE-2024-32988
was published
May 22, 2024
Hardcoded credentials vulnerability in Trellix ePolicy Orchestrator (ePO) on Premise prior to 5...
High
Unreviewed
CVE-2024-4844
was published
May 16, 2024
TOTOLINK CP450 V4.1.0cu.747_B20191224 was discovered to contain a vulnerability in the...
High
Unreviewed
CVE-2024-34219
was published
May 14, 2024
The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication...
High
Unreviewed
CVE-2024-23473
was published
May 14, 2024
Sangoma FreePBX 1805 through 2203 on Linux contains hardcoded credentials for the Asterisk REST...
High
Unreviewed
CVE-2023-26566
was published
May 14, 2024
Voltronic Power ViewPower Pro MySQL Use of Hard-coded Credentials Local Privilege Escalation...
High
Unreviewed
CVE-2023-51588
was published
May 3, 2024
D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability. This...
High
Unreviewed
CVE-2023-35724
was published
May 3, 2024
Unauthenticated attackers can perform actions, using SSH private keys, by knowing the IP address...
High
Unreviewed
CVE-2024-3544
was published
May 2, 2024
In KDE libksieve before 23.03.80, kmanagesieve/session.cpp places a cleartext password in server...
High
Unreviewed
CVE-2023-52723
was published
Apr 29, 2024
Brocade SANnav OVA before v2.3.1 and v2.3.0a contain hard-coded credentials in the documentation...
High
Unreviewed
CVE-2024-29966
was published
Apr 19, 2024
Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded keys used by Docker to reach...
High
Unreviewed
CVE-2024-29963
was published
Apr 19, 2024
In the Brocade SANnav server versions before v2.3.1 and v2.3.0a, the SSH keys inside the OVA...
High
Unreviewed
CVE-2024-29960
was published
Apr 19, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 contains hard-coded credentials which...
High
Unreviewed
CVE-2024-31873
was published
Apr 10, 2024
Azure AI Search Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-29063
was published
Apr 9, 2024
A CWE-798 “Use of Hard-coded Credentials” vulnerability in the MariaDB database of the web...
High
Unreviewed
CVE-2023-5456
was published
Mar 5, 2024
Use of Hard-coded Credentials vulnerability in Utarit Information Technologies SoliPay Mobile App...
High
Unreviewed
CVE-2023-6255
was published
Feb 15, 2024
Use of a hard-coded password for a special database account created during Comarch ERP XL...
High
Unreviewed
CVE-2023-4539
was published
Feb 15, 2024
CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorized
access...
High
Unreviewed
CVE-2023-6409
was published
Feb 14, 2024
ProTip!
Advisories are also available from the
GraphQL API