GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,643
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
87 advisories
Filter by severity
Fuel CMS 1.5.0 has a brute force vulnerability in fuel/modules/fuel/controllers/Login.php
Moderate
Unreviewed
CVE-2021-38725
was published
May 24, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 21.0.0.9 could...
Moderate
Unreviewed
CVE-2021-29842
was published
May 24, 2022
Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A...
Moderate
Unreviewed
CVE-2021-36284
was published
May 24, 2022
Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A...
Moderate
Unreviewed
CVE-2021-36285
was published
May 24, 2022
GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is...
Moderate
Unreviewed
CVE-2021-42096
was published
May 24, 2022
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login...
Moderate
Unreviewed
CVE-2021-33209
was published
May 24, 2022
In GNU Mailman before 2.1.36, the CSRF token for the Cgi/admindb.py admindb page contains an...
Moderate
Unreviewed
CVE-2021-43332
was published
May 24, 2022
In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be...
Moderate
Unreviewed
CVE-2021-44033
was published
May 24, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. The security feature for...
Moderate
Unreviewed
CVE-2022-28386
was published
Jun 9, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design,...
Moderate
Unreviewed
CVE-2022-28384
was published
Jun 9, 2022
While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being...
Moderate
Unreviewed
CVE-2022-22496
was published
Jul 1, 2022
An issue was discovered in DSK DSKNet 2.16.136.0 and 2.17.136.5. It mishandles access control....
Moderate
Unreviewed
CVE-2022-24689
was published
Jul 19, 2022
There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may...
Moderate
Unreviewed
CVE-2022-33735
was published
Sep 21, 2022
WiseConnect - ScreenConnect Session Code Bypass. An attacker would have to use a proxy to monitor...
Moderate
Unreviewed
CVE-2022-36781
was published
Sep 29, 2022
Kirby CMS vulnerable to user enumeration in the code-based login and password reset forms
Moderate
CVE-2022-39314
was published
for
getkirby/cms
(Composer)
Oct 18, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by...
Moderate
Unreviewed
CVE-2022-44023
was published
Oct 30, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by...
Moderate
Unreviewed
CVE-2022-44022
was published
Oct 30, 2022
Improper Restriction of Excessive Authentication Attempts in GitHub repository kareadita/kavita...
Moderate
Unreviewed
CVE-2022-3945
was published
Nov 11, 2022
usememos/memos vulnerable Improper Restriction of Excessive Authentication Attempts
Moderate
CVE-2022-4797
was published
for
github.com/usememos/memos
(Go)
Dec 28, 2022
Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component....
Moderate
Unreviewed
CVE-2022-34389
was published
Feb 11, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet...
Moderate
Unreviewed
CVE-2023-26209
was published
Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet...
Moderate
Unreviewed
CVE-2022-29056
was published
Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet...
Moderate
Unreviewed
CVE-2023-26208
was published
Mar 9, 2023
Answer has Guessable CAPTCHA
Moderate
CVE-2023-1539
was published
for
github.com/answerdev/answer
(Go)
Mar 21, 2023
Improper Restriction of Excessive Authentication Attempts in calibreweb
Moderate
CVE-2022-2525
was published
for
calibreweb
(pip)
Apr 15, 2023
ProTip!
Advisories are also available from the
GraphQL API