GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
61 advisories
Filter by severity
Lansweeper lsrunase 2.0 and lsencrypt 2.0 use RC4 encryption with a hardcoded 142-byte static key...
Moderate
Unreviewed
CVE-2026-39031
was published
Jun 26, 2026
Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
Moderate
Unreviewed
CVE-2026-9260
was published
Jun 16, 2026
The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a hard-coded...
Moderate
Unreviewed
CVE-2026-34029
was published
Jun 15, 2026
Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization...
Moderate
Unreviewed
CVE-2026-50226
was published
Jun 4, 2026
ELECOM wireless LAN access point devices use a hard-coded cryptographic key when creating backups...
Moderate
Unreviewed
CVE-2026-25107
was published
May 13, 2026
SD-330AC and AMC Manager provided by silex technology, Inc. use a hard-coded cryptographic key....
Moderate
Unreviewed
CVE-2026-32958
was published
Apr 20, 2026
A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4...
Moderate
Unreviewed
CVE-2026-39810
was published
Apr 14, 2026
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application...
Moderate
Unreviewed
CVE-2025-14923
was published
Mar 3, 2026
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control...
Moderate
Unreviewed
CVE-2025-52601
was published
Dec 26, 2025
"FOD" App uses hard-coded cryptographic keys, which may allow a local unauthenticated attacker to...
Moderate
Unreviewed
CVE-2025-64304
was published
Nov 25, 2025
The Download Manager plugin for WordPress is vulnerable to unauthorized access due to a hardcoded...
Moderate
Unreviewed
CVE-2025-12177
was published
Nov 8, 2025
The Reolink Desktop Application 8.18.12 contains hardcoded credentials as the Initialization...
Moderate
Unreviewed
CVE-2025-56801
was published
Oct 21, 2025
The Reolink desktop application uses a hard-coded and predictable AES encryption key to encrypt...
Moderate
Unreviewed
CVE-2025-56802
was published
Oct 21, 2025
desknet's NEO V4.0R1.0 to V9.0R2.0 contains a hard-coded cryptographic key, which allows an...
Moderate
Unreviewed
CVE-2025-58426
was published
Oct 16, 2025
Newforma Info Exchange (NIX) uses a hard-coded key to encrypt certain query parameters. Some...
Moderate
Unreviewed
CVE-2025-35052
was published
Oct 9, 2025
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 decrypt BLE packet data by using the...
Moderate
Unreviewed
CVE-2025-60250
was published
Sep 26, 2025
The use of a hard-coded cryptographic key was discovered in firmware version 3.60 of the Click...
Moderate
Unreviewed
CVE-2025-58069
was published
Sep 24, 2025
A low privileged local attacker can abuse the affected service by using a hardcoded cryptographic...
Moderate
Unreviewed
CVE-2025-2810
was published
Aug 5, 2025
A potential security vulnerability has been
identified in the Poly Clariti Manager for versions...
Moderate
Unreviewed
CVE-2025-43483
was published
Jul 23, 2025
Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows...
Moderate
Unreviewed
CVE-2025-52374
was published
Jul 21, 2025
Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows...
Moderate
Unreviewed
CVE-2025-52373
was published
Jul 21, 2025
Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE.
When the...
Moderate
Unreviewed
CVE-2025-6074
was published
Jul 3, 2025
Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE.
An attacker...
Moderate
Unreviewed
CVE-2025-6071
was published
Jul 3, 2025
Arris VIP1113 devices through 2025-05-30 with KreaTV SDK have a firmware decryption key of...
Moderate
Unreviewed
CVE-2025-49164
was published
Jun 3, 2025
The certificate and private key used for providing transport layer security for connections to...
Moderate
Unreviewed
CVE-2025-48417
was published
May 21, 2025
ProTip!
Advisories are also available from the
GraphQL API