Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

87 advisories

Loading
GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is... Moderate Unreviewed
CVE-2021-42096 was published May 24, 2022
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login... Moderate Unreviewed
CVE-2021-33209 was published May 24, 2022
In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be... Moderate Unreviewed
CVE-2021-44033 was published May 24, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. The security feature for... Moderate Unreviewed
CVE-2022-28386 was published Jun 9, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design,... Moderate Unreviewed
CVE-2022-28384 was published Jun 9, 2022
There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may... Moderate Unreviewed
CVE-2022-33735 was published Sep 21, 2022
When the device is configured to perform account lockout with a defined period of time, any... Moderate Unreviewed
CVE-2017-10604 was published May 13, 2022
A vulnerability in the Gleez CMS 1.2.0 login page could allow an unauthenticated, remote attacker... Moderate Unreviewed
CVE-2018-16703 was published May 13, 2022
In GNU Mailman before 2.1.36, the CSRF token for the Cgi/admindb.py admindb page contains an... Moderate Unreviewed
CVE-2021-43332 was published May 24, 2022
usememos/memos vulnerable Improper Restriction of Excessive Authentication Attempts Moderate
CVE-2022-4797 was published for github.com/usememos/memos (Go) Dec 28, 2022
A vulnerable design in fingerprint matching algorithm prior to SMR Mar-2022 Release 1 allows... Moderate Unreviewed
CVE-2022-25820 was published Mar 11, 2022
Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component.... Moderate Unreviewed
CVE-2022-34389 was published Feb 11, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2023-26208 was published Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2023-26209 was published Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2022-29056 was published Mar 9, 2023
Answer has Guessable CAPTCHA Moderate
CVE-2023-1539 was published for github.com/answerdev/answer (Go) Mar 21, 2023
Improper Restriction of Excessive Authentication Attempts in calibreweb Moderate
CVE-2022-2525 was published for calibreweb (pip) Apr 15, 2023
No Restriction of Excessive Authentication Attempts in Firefly III Moderate
CVE-2021-3663 was published for grumpydictator/firefly-iii (Composer) Aug 9, 2021
A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as... Moderate Unreviewed
CVE-2023-3605 was published Jul 10, 2023
Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric... Moderate Unreviewed
CVE-2023-4625 was published Nov 6, 2023
The unauthenticated attacker in NetWeaver AS Java Logon application - version 7.50, can brute... Moderate Unreviewed
CVE-2023-42480 was published Nov 14, 2023
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail... Moderate Unreviewed
CVE-2023-45582 was published Nov 14, 2023
LibreNMS vulnerable to rate limiting bypass on login page Moderate
CVE-2023-46745 was published for librenms/librenms (Composer) Nov 17, 2023
rook1337
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic.... Moderate Unreviewed
CVE-2023-6756 was published Dec 13, 2023
Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of... Moderate Unreviewed
CVE-1999-1152 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database