GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 279,086

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

55 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insufficient Password Policy.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. Moderate Unreviewed

CVE-2025-12552 was published Oct 31, 2025

IBM Transformation Extender Advanced 10.0.1 does not require that users should have strong... Moderate Unreviewed

CVE-2023-49883 was published Oct 1, 2025

A vulnerability has been found in macrozheng mall up to 1.0.3. This impacts an unknown function... Moderate Unreviewed

CVE-2025-9514 was published Aug 27, 2025

An issue was discovered in Cicool builder 3.4.4 allowing attackers to reset the administrator's... Moderate Unreviewed

CVE-2025-51543 was published Aug 19, 2025

A vulnerability was found in atjiu pybbs up to 6.0.0. It has been classified as critical.... Moderate Unreviewed

CVE-2025-8549 was published Aug 5, 2025

Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account... Moderate Unreviewed

CVE-2019-19145 was published Aug 1, 2025

A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This... Moderate Unreviewed

CVE-2025-8182 was published Jul 26, 2025

Weak Password Requirements vulnerability in Mitsubishi Electric Corporation photovoltaic system... Moderate Unreviewed

CVE-2025-5022 was published Jul 10, 2025

IBM Security Verify Governance 10.0.2 does not require that users should have strong passwords by... Moderate Unreviewed

CVE-2024-22330 was published Jun 6, 2025

Users who were required to change their password could still access system information before... Moderate Unreviewed

CVE-2025-46742 was published May 12, 2025

A vulnerability, which was classified as problematic, has been found in SunGrow Logger1000 01_A.... Moderate Unreviewed

CVE-2025-4534 was published May 11, 2025

IBM App Connect Enterprise Certified Container 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1,... Moderate Unreviewed

CVE-2025-1993 was published May 9, 2025

IBM Controller 11.0.0 through 11.0.1 and 11.1.0 does not require that users should have strong... Moderate Unreviewed

CVE-2024-41778 was published Mar 1, 2025

A vulnerability, which was classified as problematic, was found in PMWeb 7.2.0. This affects an... Moderate Unreviewed

CVE-2025-1341 was published Feb 16, 2025

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords... Moderate Unreviewed

CVE-2023-35907 was published Jan 29, 2025

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords... Moderate Unreviewed

CVE-2023-37398 was published Jan 29, 2025

HCL MyXalytics is affected by an improper password policy implementation vulnerability. Weak... Moderate Unreviewed

CVE-2024-42173 was published Jan 11, 2025

Altai Technologies Ltd Altai X500 Indoor 22 802.11ac Wave 2 AP web Management Weak password... Moderate Unreviewed

CVE-2024-51398 was published Nov 1, 2024

D-Link DSL6740C v6.TR069.20211230 was discovered to use an insecure default Wifi password,... Moderate Unreviewed

CVE-2024-48272 was published Oct 30, 2024

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800... Moderate Unreviewed

CVE-2024-22068 was published Oct 10, 2024

In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static... Moderate Unreviewed

CVE-2024-45374 was published Sep 26, 2024

The goTenna Pro series uses a weak password for the QR broadcast message. If the QR broadcast... Moderate Unreviewed

CVE-2024-47121 was published Sep 26, 2024

A vulnerability has been identified in Location Intelligence family (All versions < V4.4).... Moderate Unreviewed

CVE-2024-41683 was published Aug 13, 2024

Philips Vue PACS does not require that users have strong passwords, which could make it easier... Moderate Unreviewed

CVE-2023-40539 was published Jul 18, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to possibly... Moderate Unreviewed

CVE-2024-35137 was published Jun 28, 2024

Previous1…3 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

55 advisories