GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,485

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

316 advisories

Filter by severity

Sort by

Least recently updated

phpIPAM version 1.5.1 contains a vulnerability where an attacker can bypass the IP block... Moderate Unreviewed

CVE-2024-0787 was published Nov 15, 2024

There is no limit on the number of failed login attempts permitted with the Clinician Password or... Critical Unreviewed

CVE-2024-9832 was published Nov 14, 2024

An insufficient entropy vulnerability in the SecuSUITE Secure Client Authentication (SCA) Server... Moderate Unreviewed

CVE-2024-51720 was published Nov 12, 2024

A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic.... Low Unreviewed

CVE-2024-11126 was published Nov 12, 2024

SAP NetWeaver AS Java allows an unauthenticated attacker to brute force the login functionality... Moderate Unreviewed

CVE-2024-47592 was published Nov 12, 2024

This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed... Critical Unreviewed

CVE-2024-51558 was published Nov 4, 2024

A lack of rate limiting in the OTP validation component of Digitory Multi Channel Integrated POS... Critical Unreviewed

CVE-2024-48143 was published Oct 24, 2024

In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a credential... High Unreviewed

CVE-2024-7292 was published Oct 9, 2024

This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect... Critical Unreviewed

CVE-2024-47656 was published Oct 4, 2024

A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code... Critical Unreviewed

CVE-2024-41276 was published Oct 1, 2024

This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive... Critical Unreviewed

CVE-2024-47088 was published Sep 19, 2024

An issue was discovered in Bravura Security Fabric versions 12.3.x before 12.3.5.32784, 12.4.x... Critical Unreviewed

CVE-2024-45523 was published Sep 18, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information... Moderate Unreviewed

CVE-2024-5682 was published Sep 18, 2024

Keycloak Services has a potential bypass of brute force protection Moderate

CVE-2024-4629 was published for org.keycloak:keycloak-services (Maven) Sep 17, 2024

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for... Critical Unreviewed

CVE-2024-45790 was published Sep 11, 2024

An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0... High Unreviewed

CVE-2024-45327 was published Sep 11, 2024

An improper restriction of excessive authentication attempts vulnerability has been reported to... Low Unreviewed

CVE-2024-32771 was published Sep 6, 2024

RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive... Moderate Unreviewed

CVE-2024-45589 was published Sep 5, 2024

Windmill HTTP Request users.rs excessive authentication in github.com/windmill-labs/windmill Moderate

CVE-2024-8462 was published for github.com/windmill-labs/windmill (Go) Sep 5, 2024

A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout... High Unreviewed

CVE-2021-22530 was published Aug 28, 2024

Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute... Critical Unreviewed

CVE-2024-43042 was published Aug 16, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions... Critical Unreviewed

CVE-2024-42465 was published Aug 16, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions... Critical Unreviewed

CVE-2024-42466 was published Aug 16, 2024

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an... High Unreviewed

CVE-2024-39398 was published Aug 14, 2024

A vulnerability has been identified in Location Intelligence family (All versions < V4.4).... Moderate Unreviewed

CVE-2024-41682 was published Aug 13, 2024

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

316 advisories