GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,512
Composer 4,179
Erlang 31
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 233,009

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

311 advisories

Filter by severity

Sort by

Least recently updated

This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed... Critical Unreviewed

CVE-2024-51558 was published Nov 4, 2024

A lack of rate limiting in the OTP validation component of Digitory Multi Channel Integrated POS... Critical Unreviewed

CVE-2024-48143 was published Oct 24, 2024

In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a credential... High Unreviewed

CVE-2024-7292 was published Oct 9, 2024

This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect... Critical Unreviewed

CVE-2024-47656 was published Oct 4, 2024

A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code... Critical Unreviewed

CVE-2024-41276 was published Oct 1, 2024

This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive... Critical Unreviewed

CVE-2024-47088 was published Sep 19, 2024

An issue was discovered in Bravura Security Fabric versions 12.3.x before 12.3.5.32784, 12.4.x... Critical Unreviewed

CVE-2024-45523 was published Sep 18, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information... Moderate Unreviewed

CVE-2024-5682 was published Sep 18, 2024

Keycloak Services has a potential bypass of brute force protection Moderate

CVE-2024-4629 was published for org.keycloak:keycloak-services (Maven) Sep 17, 2024

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for... Critical Unreviewed

CVE-2024-45790 was published Sep 11, 2024

An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0... High Unreviewed

CVE-2024-45327 was published Sep 11, 2024

An improper restriction of excessive authentication attempts vulnerability has been reported to... Low Unreviewed

CVE-2024-32771 was published Sep 6, 2024

RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive... Moderate Unreviewed

CVE-2024-45589 was published Sep 5, 2024

Windmill HTTP Request users.rs excessive authentication in github.com/windmill-labs/windmill Moderate

CVE-2024-8462 was published for github.com/windmill-labs/windmill (Go) Sep 5, 2024

A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout... High Unreviewed

CVE-2021-22530 was published Aug 28, 2024

Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute... Critical Unreviewed

CVE-2024-43042 was published Aug 16, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions... Critical Unreviewed

CVE-2024-42466 was published Aug 16, 2024

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions... Critical Unreviewed

CVE-2024-42465 was published Aug 16, 2024

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an... High Unreviewed

CVE-2024-39398 was published Aug 14, 2024

A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed

CVE-2024-41904 was published Aug 13, 2024

A vulnerability has been identified in Location Intelligence family (All versions < V4.4).... Moderate Unreviewed

CVE-2024-41682 was published Aug 13, 2024

GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000... Critical Unreviewed

CVE-2024-39225 was published Aug 6, 2024

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly... High Unreviewed

CVE-2024-38888 was published Aug 2, 2024

An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated... High Unreviewed

CVE-2024-38176 was published Jul 24, 2024

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... High Unreviewed

CVE-2024-39873 was published Jul 9, 2024

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

311 advisories