GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
166 advisories
Filter by severity
IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not require that users...
High
Unreviewed
CVE-2018-1680
was published
May 13, 2022
On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint Security Suite Enterprise...
High
Unreviewed
CVE-2018-15766
was published
May 13, 2022
A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T...
High
Unreviewed
CVE-2018-6312
was published
May 13, 2022
RuggedCom Rugged Operating System (ROS) before 3.3 has a factory account with a password derived...
High
Unreviewed
CVE-2012-2441
was published
May 13, 2022
A lack of password length restriction in Zammad v5.1.0 allows for the creation of extremely long...
High
Unreviewed
CVE-2022-29700
was published
Apr 28, 2022
gpw generates shorter passwords than required
High
Unreviewed
CVE-2011-4931
was published
Apr 22, 2022
The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access...
Critical
Unreviewed
CVE-2022-1039
was published
Apr 21, 2022
Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.
Moderate
Unreviewed
CVE-2022-1236
was published
Apr 6, 2022
IBM Maximo Asset Management 7.6.1.2 does not require that users should have strong passwords by...
High
Unreviewed
CVE-2021-38935
was published
Feb 19, 2022
Weak Password Requirements in Daybyday CRM
High
CVE-2022-22110
was published
for
bottelet/flarepoint
(Composer)
Jan 8, 2022
IBM Spectrum Copy Data Management 2.2.13 and earlier has weak authentication and password rules...
High
Unreviewed
CVE-2021-39064
was published
Dec 14, 2021
An authentication bypass (account takeover) vulnerability exists in Premiumdatingscript 4.2.7.7...
Moderate
Unreviewed
CVE-2021-41696
was published
Dec 10, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The password for the...
Critical
Unreviewed
CVE-2021-43036
was published
Dec 7, 2021
In Canon LBP223 printers, the System Manager Mode login does not require an account password or...
High
Unreviewed
CVE-2021-43471
was published
Dec 7, 2021
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords...
High
Unreviewed
CVE-2021-20470
was published
Dec 4, 2021
Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to...
High
Unreviewed
CVE-2021-40333
was published
Dec 3, 2021
ProTip!
Advisories are also available from the
GraphQL API