Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

90 advisories

Loading
phpIPAM version 1.5.1 contains a vulnerability where an attacker can bypass the IP block... Moderate Unreviewed
CVE-2024-0787 was published Nov 15, 2024
An insufficient entropy vulnerability in the SecuSUITE Secure Client Authentication (SCA) Server... Moderate Unreviewed
CVE-2024-51720 was published Nov 12, 2024
SAP NetWeaver AS Java allows an unauthenticated attacker to brute force the login functionality... Moderate Unreviewed
CVE-2024-47592 was published Nov 12, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information... Moderate Unreviewed
CVE-2024-5682 was published Sep 18, 2024
Keycloak Services has a potential bypass of brute force protection Moderate
CVE-2024-4629 was published for org.keycloak:keycloak-services (Maven) Sep 17, 2024
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive... Moderate Unreviewed
CVE-2024-45589 was published Sep 5, 2024
Windmill HTTP Request users.rs excessive authentication in github.com/windmill-labs/windmill Moderate
CVE-2024-8462 was published for github.com/windmill-labs/windmill (Go) Sep 5, 2024
A vulnerability has been identified in Location Intelligence family (All versions < V4.4).... Moderate Unreviewed
CVE-2024-41682 was published Aug 13, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout... Moderate Unreviewed
CVE-2024-25031 was published Jun 29, 2024
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that if exploited allows a... Moderate Unreviewed
CVE-2024-28022 was published Jun 11, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in wpdevart Contact Form... Moderate Unreviewed
CVE-2024-35747 was published Jun 10, 2024
Improper restriction of excessive authentication attempts with two factor authentication methods... Moderate Unreviewed
CVE-2024-28833 was published Jun 10, 2024
A JSON Injection vulnerability exists in the `mintplex-labs/anything-llm` application,... Moderate Unreviewed
CVE-2024-3102 was published Jun 6, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha... Moderate Unreviewed
CVE-2023-48745 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Contact... Moderate Unreviewed
CVE-2023-48318 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in 10Web Form Builder... Moderate Unreviewed
CVE-2023-48290 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Nitin Rathod WP Forms... Moderate Unreviewed
CVE-2023-48276 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Forge12 Interactive... Moderate Unreviewed
CVE-2023-45009 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Devnath verma WP... Moderate Unreviewed
CVE-2023-44235 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WPPlugins – WordPress... Moderate Unreviewed
CVE-2023-34001 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Brainstorm Force... Moderate Unreviewed
CVE-2023-23730 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Metagauss ProfileGrid... Moderate Unreviewed
CVE-2024-32774 was published May 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Appointment... Moderate Unreviewed
CVE-2024-32720 was published May 17, 2024
KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which... Moderate Unreviewed
CVE-2024-3461 was published May 14, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in LoginPress LoginPress... Moderate Unreviewed
CVE-2024-32676 was published Apr 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database