GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,169 advisories
Filter by severity
ENC DataVault 7.1.1W uses an inappropriate encryption algorithm, such that an attacker (who does...
Critical
Unreviewed
CVE-2021-36751
was published
Jan 3, 2022
Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded...
High
Unreviewed
CVE-2021-20132
was published
Dec 31, 2021
Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to...
Critical
Unreviewed
CVE-2021-20155
was published
Dec 31, 2021
Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. It does not appear that normal...
High
Unreviewed
CVE-2021-20170
was published
Dec 31, 2021
Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear...
High
Unreviewed
CVE-2021-45732
was published
Dec 31, 2021
Hard coded credentials discovered in SolarWinds Web Help Desk product. Through these credentials,...
Moderate
Unreviewed
CVE-2021-35232
was published
Dec 28, 2021
IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a...
High
Unreviewed
CVE-2021-32993
was published
Dec 28, 2021
Certain NETGEAR devices are affected by a hardcoded password. This affects RBK352 before 4.4.0.10...
Moderate
Unreviewed
CVE-2021-45521
was published
Dec 27, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by a hardcoded password.
High
Unreviewed
CVE-2021-45522
was published
Dec 27, 2021
Certain NETGEAR devices are affected by a hardcoded password. This affects RBK352 before 4.4.0.10...
High
Unreviewed
CVE-2021-45520
was published
Dec 27, 2021
Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials.
High
Unreviewed
CVE-2021-44207
was published
Dec 22, 2021
A combination of a use of hard-coded cryptographic key vulnerability [CWE-321] in FortiClientEMS...
High
Unreviewed
CVE-2021-41028
was published
Dec 17, 2021
A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may...
High
Unreviewed
CVE-2021-26108
was published
Dec 9, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was...
Critical
Unreviewed
CVE-2021-43044
was published
Dec 7, 2021
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets...
High
Unreviewed
CVE-2021-43284
was published
Dec 1, 2021
An issue was discovered on Victure WR1200 devices through 1.0.3. The default Wi-Fi WPA2 key is...
Moderate
Unreviewed
CVE-2021-43282
was published
Dec 1, 2021
HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows...
Critical
Unreviewed
CVE-2021-26611
was published
Nov 27, 2021
Hard coded cryptographic key in Kiali
High
CVE-2020-1764
was published
for
github.com/kiali/kiali
(Go)
May 18, 2021
Hard-Coded Key Used For Remember-me Token in Opencast
Moderate
CVE-2020-5222
was published
for
org.opencastproject:opencast-kernel
(Maven)
Jan 30, 2020
ProTip!
Advisories are also available from the
GraphQL API