GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
95 advisories
Filter by severity
SAP Commerce Cloud could retain a sample OAuth2 client with publicly documented sample...
Critical
Unreviewed
CVE-2026-44761
was published
Jul 14, 2026
IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker...
High
Unreviewed
CVE-2026-3144
was published
Jul 8, 2026
AutoBangumi before 3.2.8 contains a hard-coded default credentials vulnerability that allows...
Critical
Unreviewed
CVE-2026-58466
was published
Jul 2, 2026
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded...
Critical
Unreviewed
CVE-2026-58453
was published
Jul 1, 2026
Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain a Use of Default...
Moderate
Unreviewed
CVE-2026-44273
was published
Jun 22, 2026
Dell AIOps Collector versions prior to 1.18.3 contain a "Use of Default Credentials"...
High
Unreviewed
CVE-2026-32652
was published
Jun 17, 2026
Brickcom cameras
ship with default credentials that allows any unauthenticated remote attacker to...
High
Unreviewed
CVE-2026-50005
was published
Jun 11, 2026
Use of default credentials vulnerability in Roche Diagnostics navify Digital Pathology (RabbitMQ...
High
Unreviewed
CVE-2026-9844
was published
Jun 2, 2026
The Danelec MacGregor Voyage Data Recorder
device includes a default username and password, with...
High
Unreviewed
CVE-2026-42941
was published
May 29, 2026
IBM Operations Analytics - Log Analysis and IBM SmartCloud Analytics - Log Analysis uses default...
High
Unreviewed
CVE-2026-7365
was published
May 27, 2026
IBM Cloud Pak for Data System - Cyclops 11.3.0.2 through Interim Fix 002 IBM Cloud Pak for Data...
Moderate
Unreviewed
CVE-2025-36221
was published
May 26, 2026
Tyler Identity Local (TID-L) uses documented, default administrative credentials. Users are not...
Critical
Unreviewed
CVE-2026-44159
was published
May 19, 2026
Prior to 2025-11-03, well-intended users of Terraform or REST API for Google Cloud AlloyDB for...
Critical
Unreviewed
CVE-2026-7428
was published
May 12, 2026
NornicDB has Improper Network Binding in its Bolt Server, allowing unauthorized remote access
Critical
CVE-2026-42072
was published
for
github.com/orneryd/nornicdb
(Go)
Apr 22, 2026
netbox-docker before 2.5.0 has a superuser account with default credentials (admin password for...
Critical
Unreviewed
CVE-2023-27573
was published
Mar 11, 2026
Default credentials set for local privileged user in Virtual Appliance. The following products...
High
Unreviewed
CVE-2026-28713
was published
Mar 6, 2026
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a default credentials...
Critical
Unreviewed
CVE-2026-27751
was published
Feb 27, 2026
Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior ship with...
Critical
Unreviewed
CVE-2026-26341
was published
Feb 24, 2026
eNet SMART HOME server 2.2.1 and 2.3.1 ships with default credentials (user:user, admin:admin)...
Critical
Unreviewed
CVE-2026-26366
was published
Feb 15, 2026
BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 or
series 5 prior to v9.0...
High
Unreviewed
CVE-2025-54756
was published
Feb 12, 2026
A vulnerability was found in Edimax BR-6208AC 2_1.02. The affected element is the function...
Moderate
Unreviewed
CVE-2026-1972
was published
Feb 6, 2026
A weakness has been identified in Ziroom ZHOME A0101 1.0.1.0. Impacted is an unknown function of...
High
Unreviewed
CVE-2026-1803
was published
Feb 3, 2026
Default credentials vulnerability exists in SuprOS
product. If exploited, this could allow an...
High
Unreviewed
CVE-2025-7740
was published
Jan 28, 2026
By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested...
Critical
Unreviewed
CVE-2025-59108
was published
Jan 26, 2026
Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0,...
High
Unreviewed
CVE-2026-22273
was published
Jan 23, 2026
ProTip!
Advisories are also available from the
GraphQL API