Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

87 advisories

Loading
The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed... Moderate Unreviewed
CVE-2002-0628 was published Apr 30, 2022
IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 is vulnerable to HTTP header injection,... Moderate Unreviewed
CVE-2023-45190 was published Feb 9, 2024
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security Moderate
CVE-2024-21500 was published for github.com/greenpau/caddy-security (Go) Feb 17, 2024
Devise-Two-Factor vulnerable to brute force attacks Moderate
CVE-2024-0227 was published for devise-two-factor (RubyGems) Jan 12, 2024 withdrawn
bsedat
Bypassing Rate Limit and Brute Force Protection Using Cache Overflow Moderate
CVE-2024-21662 was published for github.com/argoproj/argo-cd/v2 (Go) Mar 18, 2024
nadava669 pasha-codefresh
crenshaw-dev todaywasawesome jannfis
Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss Moderate
CVE-2024-21652 was published for github.com/argoproj/argo-cd/v2 (Go) Mar 18, 2024
nadava669 pasha-codefresh
jannfis crenshaw-dev todaywasawesome
There is an information disclosure vulnerability on Mate 9 Pro Huawei smartphones versions... Moderate Unreviewed
CVE-2019-5217 was published May 24, 2022
The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on... Moderate Unreviewed
CVE-2023-33754 was published Jun 1, 2023
A vulnerability in the reclaim host role feature of Cisco Webex Meetings and Cisco Webex Meetings... Moderate Unreviewed
CVE-2021-1311 was published May 24, 2022
A security feature bypass vulnerability exists in Active Directory Federation Services (ADFS)... Moderate Unreviewed
CVE-2019-1126 was published May 24, 2022
An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks... Moderate Unreviewed
CVE-2024-30390 was published Apr 12, 2024
Improper restriction of excessive authentication attempts on some authentication methods in... Moderate Unreviewed
CVE-2024-28825 was published Apr 24, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in LoginPress LoginPress... Moderate Unreviewed
CVE-2024-32676 was published Apr 25, 2024
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by... Moderate Unreviewed
CVE-2022-44023 was published Oct 30, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by... Moderate Unreviewed
CVE-2022-44022 was published Oct 30, 2022
KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which... Moderate Unreviewed
CVE-2024-3461 was published May 14, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Metagauss ProfileGrid... Moderate Unreviewed
CVE-2024-32774 was published May 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Appointment... Moderate Unreviewed
CVE-2024-32720 was published May 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Brainstorm Force... Moderate Unreviewed
CVE-2023-23730 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WPPlugins – WordPress... Moderate Unreviewed
CVE-2023-34001 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Devnath verma WP... Moderate Unreviewed
CVE-2023-44235 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Forge12 Interactive... Moderate Unreviewed
CVE-2023-45009 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha... Moderate Unreviewed
CVE-2023-48745 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Contact... Moderate Unreviewed
CVE-2023-48318 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in 10Web Form Builder... Moderate Unreviewed
CVE-2023-48290 was published Jun 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database