Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

66 advisories

Loading
Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to... High Unreviewed
CVE-2021-40333 was published Dec 3, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords... High Unreviewed
CVE-2021-20470 was published Dec 4, 2021
In Canon LBP223 printers, the System Manager Mode login does not require an account password or... High Unreviewed
CVE-2021-43471 was published Dec 7, 2021
IBM Spectrum Copy Data Management 2.2.13 and earlier has weak authentication and password rules... High Unreviewed
CVE-2021-39064 was published Dec 14, 2021
Weak Password Requirements in Daybyday CRM High
CVE-2022-22110 was published for bottelet/flarepoint (Composer) Jan 8, 2022
IBM Maximo Asset Management 7.6.1.2 does not require that users should have strong passwords by... High Unreviewed
CVE-2021-38935 was published Feb 19, 2022
gpw generates shorter passwords than required High Unreviewed
CVE-2011-4931 was published Apr 22, 2022
A lack of password length restriction in Zammad v5.1.0 allows for the creation of extremely long... High Unreviewed
CVE-2022-29700 was published Apr 28, 2022
RuggedCom Rugged Operating System (ROS) before 3.3 has a factory account with a password derived... High Unreviewed
CVE-2012-2441 was published May 13, 2022
A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T... High Unreviewed
CVE-2018-6312 was published May 13, 2022
On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint Security Suite Enterprise... High Unreviewed
CVE-2018-15766 was published May 13, 2022
IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not require that users... High Unreviewed
CVE-2018-1680 was published May 13, 2022
IBM Security Identity Manager 6.0.0 does not require that users should have strong passwords by... High Unreviewed
CVE-2018-1956 was published May 13, 2022
A weak password vulnerability was discovered in Enphase Envoy R3.*.*. One can login via TCP port... High Unreviewed
CVE-2019-7676 was published May 13, 2022
Ansible Tower before version 3.2.4 has a flaw in the management of system and organization... High Unreviewed
CVE-2018-1101 was published May 13, 2022
A vulnerability in the web portal of the Cisco Prime Collaboration Provisioning Tool could allow... High Unreviewed
CVE-2018-0204 was published May 13, 2022
IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 Database Activity... High Unreviewed
CVE-2017-1597 was published May 13, 2022
The National Payments Corporation of India BHIM application 1.3 for Android relies on a four... High Unreviewed
CVE-2017-9818 was published May 13, 2022
On Dell 2335dn printers with Printer Firmware Version 2.70.05.02, Engine Firmware Version 1.10.65... High Unreviewed
CVE-2018-15748 was published May 13, 2022
An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04... High Unreviewed
CVE-2018-18562 was published May 13, 2022
IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 does not require that users should... High Unreviewed
CVE-2019-4067 was published May 24, 2022
Plone allows weak passwords High
CVE-2020-7940 was published for Plone (pip) May 24, 2022
In IQrouter through 3.3.1, the Lua function reset_password in the web-panel allows remote... High Unreviewed
CVE-2020-11966 was published May 24, 2022
The OKLOK (3.1.1) mobile companion app for Fingerprint Bluetooth Padlock FB50 (2.3) has weak... High Unreviewed
CVE-2020-8790 was published May 24, 2022
Weak password requirements in Blaauw Remote Kiln Control through v3.00r4 allow a user to set... High Unreviewed
CVE-2019-18872 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database